CVE-2023-3595 Information

Description

Where this vulnerability exists in the Rockwell Automation 1756 EN2 and 1756 EN3 ControlLogix communication products it could allow a malicious user to perform remote code execution with persistence on the target system through maliciously crafted CIP messages. This includes the ability to modify deny and exfiltrate data passing through the device.

Reference

https://rockwellautomation.custhelp.com/app/answers/answer_view/a_id/1140010