What is GHSA-r6pv-mqwg-xq5g?

GHSA-r6pv-mqwg-xq5g is a security advisory published by GitHub Security Advisories with High severity. Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB...

Which CVE IDs does GHSA-r6pv-mqwg-xq5g cover?

GHSA-r6pv-mqwg-xq5g covers the following CVE IDs: CVE-2012-6437. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-r6pv-mqwg-xq5g?

GHSA-r6pv-mqwg-xq5g has a CVSS v3 base score of 9.8, published by GitHub Security Advisories.

GHSA-r6pv-mqwg-xq5gHighCVSS 9.8

Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB...

Vendor

GitHub Security Advisories

Published

May 17, 2022

Last Modified

June 3, 2026

🔗 CVE IDs covered (1)

CVE-2012-6437 →

📋 Description

Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and earlier; SoftLogix 18 and earlier; CompactLogix controllers 19 and earlier; SoftLogix controllers 19 and earlier; ControlLogix controllers 20 and earlier; GuardLogix controllers 20 and earlier; and MicroLogix 1100 and 1400 do not properly perform authentication for Ethernet firmware updates, which allows remote attackers to execute arbitrary code via a Trojan horse update image.

🔗 References (8)

https://nvd.nist.gov/vuln/detail/CVE-2012-6437
http://www.us-cert.gov/control_systems/pdf/ICSA-13-011-03.pdf
https://rockwellautomation.custhelp.com/app/answers/detail/a_id/470154
https://rockwellautomation.custhelp.com/app/answers/detail/aid/470155
https://rockwellautomation.custhelp.com/app/answers/detail/aid/470156
https://www.cisa.gov/news-events/ics-advisories/icsa-13-011-03
http://rockwellautomation.custhelp.com/app/answers/detail/a_id/54102
https://github.com/advisories/GHSA-r6pv-mqwg-xq5g