Loading HuntDB...

GHSA-qvv4-3g8f-rgjx

GitHub Security Advisory

⚠ Unreviewed CRITICAL Has CVE

Advisory Details


Where this vulnerability exists in the Rockwell Automation 1756 EN2* and 1756 EN3* ControlLogix communication products, it could allow a malicious user to perform remote code execution with persistence on the target system through maliciously crafted CIP messages. This includes the ability to modify, deny, and exfiltrate data passing through the device.

Related CVEs

Key Information

GHSA ID
GHSA-qvv4-3g8f-rgjx
Published
July 12, 2023 3:30 PM
Last Modified
April 4, 2024 6:04 AM
CVSS Score
9.0 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: July 30, 2025 6:36 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.