CVE-2025-11694 | THREATINT

Description

A security issue exists within 1769 CompactLogix controllers due to the missing validation of sequence numbers and source IP addresses in the CIP protocol. This allows attacker to abuse the exposed Connection ID’s visible on the web interface to perform denial-of-service attacks, resulting in a minor fault.

PUBLISHED Reserved 2025-10-13 | Published 2026-06-16 | Updated 2026-06-16 | Assigner Rockwell

HIGH: 8.7CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-354 Improper validation of integrity check value

Product status

Default status

unaffected

V36 (custom)

affected

Credits

This security issue was found by external researcher Tyler Lentz of Idaho National Laboratory. finder

References

www.rockwellautomation.com/...dvisories/advisory.SD1776.html

cve.org (CVE-2025-11694)

nvd.nist.gov (CVE-2025-11694)

Download JSON