CVE-2017-7901
Last modified
CVE-2017-7901 is a vulnerability of currently unknown severity. A Predictable Value Range from Previous Values issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A and B, Version 16.00 and prior versions; and 1763-L16DWD, Series A and B, Version 16.00 and prior versions and Allen-Bradley MicroLogix 1400 programmable logic controllers 1766-L32AWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWAA, Series A and B, Version 16.00 and prior versions; 1766-L32BXB, Series A and B, Version 16.00 and prior versions; 1766-L32BXBA, Series A and B, Version 16.00 and prior versions; and 1766-L32AWAA, Series A and B, Version 16.00 and prior versions. Insufficiently random TCP initial sequence numbers are generated, which may allow an attacker to predict the numbers from previous values. EPSS estimates a 6.62% chance of exploitation in the next 30 days.
Description
A Predictable Value Range from Previous Values issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A and B, Version 16.00 and prior versions; and 1763-L16DWD, Series A and B, Version 16.00 and prior versions and Allen-Bradley MicroLogix 1400 programmable logic controllers 1766-L32AWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWA, Series A and B, Version 16.00 and prior versions; 1766-L32BWAA, Series A and B, Version 16.00 and prior versions; 1766-L32BXB, Series A and B, Version 16.00 and prior versions; 1766-L32BXBA, Series A and B, Version 16.00 and prior versions; and 1766-L32AWAA, Series A and B, Version 16.00 and prior versions. Insufficiently random TCP initial sequence numbers are generated, which may allow an attacker to predict the numbers from previous values. This may allow an attacker to spoof or disrupt TCP connections, resulting in a denial of service for the target device.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Rockwellautomation | 1763-L16awa Series A | <= 16.000 |
| Rockwellautomation | 1763-L16awa Series B | <= 16.000 |
| Rockwellautomation | 1763-L16bbb Series A | <= 16.000 |
| Rockwellautomation | 1763-L16bbb Series B | <= 16.000 |
| Rockwellautomation | 1763-L16bwa Series A | <= 16.000 |
| Rockwellautomation | 1763-L16bwa Series B | <= 16.000 |
| Rockwellautomation | 1763-L16dwd Series A | <= 16.000 |
| Rockwellautomation | 1763-L16dwd Series B | <= 16.000 |
| Rockwellautomation | 1766-L32awa Series A | <= 16.000 |
| Rockwellautomation | 1766-L32awa Series B | <= 16.000 |
| Rockwellautomation | 1766-L32awaa Series A | <= 16.000 |
| Rockwellautomation | 1766-L32awaa Series B | <= 16.000 |
| Rockwellautomation | 1766-L32bwa Series A | <= 16.000 |
| Rockwellautomation | 1766-L32bwa Series B | <= 16.000 |
| Rockwellautomation | 1766-L32bwaa Series A | <= 16.000 |
| Rockwellautomation | 1766-L32bwaa Series B | <= 16.000 |
| Rockwellautomation | 1766-L32bxb Series A | <= 16.000 |
| Rockwellautomation | 1766-L32bxb Series B | <= 16.000 |
| Rockwellautomation | 1766-L32bxba Series A | <= 16.000 |
| Rockwellautomation | 1766-L32bxba Series B | <= 16.000 |
References
- https://ics-cert.us-cert.gov/advisories/ICSA-17-115-04Patch, Third Party Advisory, US Government Resource
- https://ics-cert.us-cert.gov/advisories/ICSA-17-115-04Patch, Third Party Advisory, US Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-7901?
How severe is CVE-2017-7901?
How do I fix CVE-2017-7901?
Are you affected by CVE-2017-7901?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST