CVE-2020-6980

low-risk
Published 2020-03-16

Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versions, RSLogix 500 Software v12.001 and prior, If Simple Mail Transfer Protocol (SMTP) account data is saved in RSLogix 500, a local attacker with access to a victim’s project may be able to gather SMTP server authentication data as it is written to the project file in cleartext.

Do I need to act?

-
0.01% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
3
CVSS 3.3/10 Low
LOCAL / LOW complexity

Affected Products (4)

Micrologix 1400 A Firmware
Micrologix 1100 Firmware
Rslogix 500

Affected Vendors

Rockwellautomation

References (2)

Third Party Advisory https://www.us-cert.gov/ics/advisories/icsa-20-070-06
Third Party Advisory https://www.us-cert.gov/ics/advisories/icsa-20-070-06
23
/ 100
low-risk
Severity 13/34 · Low
Exploitability 0/34 · Minimal
Exposure 10/34 · Low