Rockwell Automation Fixes Multiple Vulnerabilities in...

Rockwell Automation Fixes Multiple Vulnerabilities in ControlLogix Communications Modules

On July 12, Rockwell Automation published an advisory addressing two vulnerabilities in its Allen-Bradley ControlLogix Communications Modules, which are used to enable communication between systems. These modules are found in devices that are used across critical infrastructure industries such as water, transportation and energy.

CVE-2023-3595
- Remote Code Execution Vulnerability
- CVSSv3: 9.8
- Severity: Critical
CVE-2023-3596
- Denial of Service Vulnerability
- CVSSv3: 7.5
- Severity: High

For more information about these vulnerabilities, including the availability of patches and Tenable product coverage, please visit our blog.

Cyber Exposure Alerts

Vulnerability Watch

Forum Discussion

Rockwell Automation Fixes Multiple Vulnerabilities in...

Recent Discussions

FAQ on Exploited Zero-Day Flaws in Cisco ASA and FTD Devices (CVE-2025-20333, CVE-2025-20362)

Microsoft’s September 2025 Patch Tuesday Addresses 80 CVEs (CVE-2025-55234)

Frequently Asked Questions About Chinese State-Sponsored Actors Compromising Global Networks

CVE-2025-7775: Citrix NetScaler ADC and Gateway Zero-Day RCE Vulnerability Exploited in the Wild

CVE-2025-25256: Proof of Concept Released for Fortinet FortiSIEM Command Injection Vulnerability

Americas

Europe

Asia / Australia