A stack-based buffer overflow vulnerability in Rockwell Automation RSLinx Classic versions 4.50.00 and earlier can be exploited remotely without authentication to cause denial of service or execute arbitrary code. The vulnerability affects critical infrastructure systems used in manufacturing, energy, water, and food sectors. Rockwell recommends upgrading to version 4.60.00 or applying patch BF31213.

Why it matters in Western Canada: Alberta and Saskatchewan energy sector organizations, along with water utilities and manufacturing facilities across Western Canada, may deploy RSLinx Classic for industrial control systems. Exploitation could disrupt critical operational technology infrastructure.

CVEs: CVE-2020-13573

---

Summary generated from the original advisory. Read the full source: cisa-advisories