Vulnerability in Rockwell Automation Micro820®, Micro850®, Micro870®

CVE-2025-13824

A security issue exists due to improper handling of malformed CIP packets during fuzzing. The controller enters a hard fault with solid red Fault LED and becomes unresponsive. Upon power cycle, the controller will enter recoverable fault w…

EPSS: 0.001 (19.0th percentile) — read the EPSS interpretation.

Affected products

Rockwell Automation Micro820®, Micro850®, Micro870® — versions V23.011 and below, V12.013 and lower, V14.011 and lower

Weakness classification (CWE)

CWE-763 — Release of Invalid Pointer or Reference

References

www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD17…