Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-9166— Rockwell Automation ControlLogix® 5580 V35.013 Denial-Of-Service

EPSS 0.10% · P28
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-9166

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Rockwell Automation ControlLogix® 5580 V35.013 Denial-Of-Service
Source: NVD (National Vulnerability Database)
Vulnerability Description
A denial-of-service security issue exists in the affected product and version. The security issue stems from the controller repeatedly attempting to forward messages. The issue could result in a major nonrecoverable fault on the controller.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
空指针解引用
Source: NVD (National Vulnerability Database)
Vulnerability Title
Rockwell Automation ControlLogix 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Rockwell Automation ControlLogix是美国罗克韦尔(Rockwell Automation)公司的一款控制器。 Rockwell Automation ControlLogix存在安全漏洞,该漏洞源于消息转发尝试导致严重故障,可能导致拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
Rockwell AutomationControlLogix® 5580 Version 35.013 -

II. Public POCs for CVE-2025-9166

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2025-9166

登录查看更多情报信息。

Same Patch Batch · Rockwell Automation · 2025-09-09 · 9 CVEs total

CVE-2025-8007Rockwell Automation 1756-ENT2R, EN4TR, EN4TRXT Vulnerability
CVE-2025-8008Rockwell Automation 1756-ENT2R, EN4TR, EN4TRXT Vulnerability
CVE-2025-9160Rockwell Automation CompactLogix® 5480 Code Execution Vulnerability
CVE-2025-7970Rockwell Automation FactoryTalk Activation Manager Lack of Encryption Vulnerability
CVE-2025-7350Rockwell Automation Stratix® IOS Cross-Site Request Forgery to Code Execution Vulnerabilit
CVE-2025-9065Rockwell Automation ThinManager® Server-Side Request Forgery Vulnerability
CVE-2025-9364Rockwell Automation FactoryTalk® Analytics™ LogixAI® Exposed Redis DB
CVE-2025-9161Rockwell Automation FactoryTalk Optix Remote Code Execution Vulnerability

IV. Related Vulnerabilities

Same product: ControlLogix® 5580
Same vendor: Rockwell Automation
Same weakness: CWE-476

V. Comments for CVE-2025-9166

No comments yet

Leave a comment