Rockwell Automation informed customers on Tuesday that patches are available for several vulnerabilities affecting its Logix and CompactLogix controllers, Flex I/O dual-port Ethernet/IP adapters, RSLinx industrial communication software, and FactoryTalk automation suite.
In FactoryTalk Historian Site Edition the industrial giant patched three high- and critical-severity vulnerabilities that can be exploited to bypass authentication and launch DoS attacks.
The company told customers that its FactoryTalk Analytics PavilionX product is affected by a high-severity improper API authorization issue that “can allow an unauthorized actor to execute privileged operations, including user/role management and other administrative actions”.
In some of its CompactLogix, ControlLogix, Compact GuardLogix, and GuardLogix controllers, the vendor fixed a high-severity DoS vulnerability that can cause a major, non-recoverable fault requiring a special recovery program. Some CompactLogix controllers are also affected by two other DoS issues.
Flex I/O dual-port Ethernet/IP adapters are affected by a DoS flaw and a critical vulnerability that can be exploited by an unauthenticated attacker to change a device’s web interface password, which could lead to unauthorized access and account takeover.
In the RSLinx product, Rockwell patched an old DoS vulnerability introduced by the use of a third-party component.
Rockwell’s ICS advisories were also distributed by CISA on Tuesday, but the cybersecurity agency did not publish an advisory for the FactoryTalk Historian vulnerabilities.
The company recently confirmed the in-the-wild exploitation of an old vulnerability tracked as CVE-2021-22681.
However, the latest advisories indicate that none of the newly addressed security holes have been targeted by threat actors.
Related: Real-World ICS Security Tales From the Trenches
Related: Siemens Says Desigo CC Files Flagged as Malware by Security Engines
Related: Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers
