CVE-2021-33012

Rockwell Automation MicroLogix 1100, all versions, allows a remote, unauthenticated attacker sending specially crafted commands to cause the PLC to fault when the controller is switched to RUN mode, which results in a denial-of-service condition. If successfully exploited, this vulnerability will ca...

high 8.6 CVSS 3.1

Published: Jul 9, 2021

Modified: Jun 3, 2026

Description

Rockwell Automation MicroLogix 1100, all versions, allows a remote, unauthenticated attacker sending specially crafted commands to cause the PLC to fault when the controller is switched to RUN mode, which results in a denial-of-service condition. If successfully exploited, this vulnerability will cause the controller to fault whenever the controller is switched to RUN mode.

References

Related CVEs

CVSS Breakdown

Version	3.1
Score	8.6 / 10
Severity	high

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Weakness (CWE)

CWE-20

Affected Product

Vendor	Rockwellautomation
Product	Micrologix 1100 Firmware