- How many CVEs does Rockwell Automation have?
- Rockwell Automation has 421 published CVE records since 2009, including 109 in the last two years.
- How many Rockwell Automation CVEs are in CISA KEV?
- Yes — 9 of Rockwell Automation's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which Rockwell Automation products have the most CVEs?
- The Rockwell Automation products with the most published CVEs are arena, MicroLogix 1400, micrologix 1400 b firmware, Arena®, factorytalk_view.
- What are the most common weakness types in Rockwell Automation CVEs?
- Rockwell Automation's CVEs most often map to these CWE weakness types: CWE-20 (Improper Input Validation), CWE-400 (Uncontrolled Resource Consumption), CWE-787 (Out-of-bounds Write), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')).
- Are there public exploits for Rockwell Automation vulnerabilities?
- Yes — 24 of Rockwell Automation's CVEs have a known public exploit.
- How many critical Rockwell Automation vulnerabilities are there?
- Rockwell Automation has 97 critical and 267 high-severity CVEs.
- What is the average severity of Rockwell Automation CVEs?
- The average CVSS base score across Rockwell Automation's scored CVEs is 8.1.