Primary

Context

Rockwell Automation ArmorBlock 5000 I/O Web Server Session Prediction Vulnerability

Vulnerability

Patched

A vulnerability exists in the web server of the Rockwell Automation ArmorBlock 5000 I/O 5032 16pt Digital Configurable module. The issue arises because the web server's session number increments in a predictable manner, based on the last two consecutive sign-in session intervals. This predictability could potentially be exploited.

Impact

The vulnerability allows for session prediction, which could be used to intercept and misuse session credentials. According to Rockwell Automation, this could allow unauthorized users to perform privileged actions.

Remediation

Users should update to version 1.012, the corrected version. If an upgrade is not possible, security best practices should be applied.

Added: Aug 14, 2025, 4:23 PM

Updated: Aug 14, 2025, 4:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Rockwell Automation ArmorBlock 5000 I/O Web Server Session Prediction Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Rockwell Automation 5032-CFGB16M12P5DR

Rockwell Automation 5032-CFGB16M12DR

Rockwell Automation 5032-CFGB16M12M12LDR

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating