Primary

Context

Rockwell Automation CompactLogix 5370 Denial-of-Service Vulnerability

Vulnerability

Patched

A denial-of-service vulnerability has been identified in Rockwell Automation's CompactLogix 5370 controllers, all software versions through 34.013, 35.012 and 36.011. The issue arises when a malformed CIP forward open message is sent, leading to a major non-recoverable fault that requires a restart to resolve.

Impact

Exploitation of this vulnerability causes a significant non-recoverable fault, requiring a restart to recover the affected system.

Remediation

Users can upgrade to versions 37.011 and later, or versions 34.016, 35.015, or 36.012. For those unable to upgrade, Rockwell Automation recommends following their security best practices.

Added: Jan 20, 2026, 2:37 PM

Updated: Jan 20, 2026, 2:37 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.5

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.5

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Rockwell Automation CompactLogix 5370 Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Rockwell Automation CompactLogix 5370

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating