CVE-2025-11694

UNKNOWN 0.0

Rockwell Automation CompactLogix 5370 Controllers – Multiple Vulnerabilities

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

A security issue exists within 1769 CompactLogix controllers due to the missing validation of sequence numbers and source IP addresses in the CIP protocol. This allows attacker to abuse the exposed Connection ID’s visible on the web interface to perform denial-of-service attacks, resulting in a minor fault.

CWE	CWE-354
Vendor	rockwell automation
Product	compactlogix 5370
Published	Jun 16, 2026
Last Updated	Jun 16, 2026

Stay Ahead of the Next One

Get instant alerts for rockwell automation compactlogix 5370

Be the first to know when new unknown vulnerabilities affecting rockwell automation compactlogix 5370 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Rockwell Automation / CompactLogix 5370

V36

References

NVD ↗ CVE.org ↗ EPSS Data ↗

rockwellautomation.com: https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1776.html

Credits

This security issue was found by external researcher Tyler Lentz of Idaho National Laboratory.