CVE-2025-11694
HighCVSS 8.7Summary
A security issue exists within 1769 CompactLogix controllers due to the missing validation of sequence numbers and source IP addresses in the CIP protocol. This allows attackers to abuse the exposed Connection ID’s visible on the web interface to perform denial-of-service attacks, resulting in a minor fault.
Risk Assessment
The organization may be exposed to denial-of-service attacks, which can lead to disruptions in control system operations and potential downtime.
Recommendation
It is recommended to implement appropriate validation mechanisms for sequence numbers and source IP addresses in the CIP protocol and to monitor network traffic for potential attacks.
Original NVD description (English source)
A security issue exists within 1769 CompactLogix controllers due to the missing validation of sequence numbers and source IP addresses in the CIP protocol. This allows attacker to abuse the exposed Connection ID’s visible on the web interface to perform denial-of-service attacks, resulting in a minor fault.

