Rockwell Automation RSLogix 5000 7 through 20.01, and 21.0, does not properly implement password protection for .ACD files (aka project files), which allows local users to obtain sensitive information or modify data via unspecified vectors.
"}],"value":"Rockwell Automation RSLogix 5000 7 through 20.01, and 21.0, does not properly implement password protection for .ACD files (aka project files), which allows local users to obtain sensitive information or modify data via unspecified vectors."}],"metrics":[{"cvssV2_0":{"accessComplexity":"MEDIUM","accessVector":"LOCAL","authentication":"NONE","availabilityImpact":"NONE","baseScore":6.3,"confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","vectorString":"AV:L/AC:M/Au:N/C:C/I:C/A:N","version":"2.0"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-522","description":"CWE-522","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"7d14cffa-0d7d-4270-9dc0-52cabd5a23a6","shortName":"icscert","dateUpdated":"2025-09-19T18:46:05.180Z"},"references":[{"name":"rslogix-cve20140755-info-disc(90981)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/90981"},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-14-021-01"},{"name":"102858","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/102858"},{"name":"65337","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/65337"},{"url":"https://rockwellautomation.custhelp.com/app/answers/detail/a_id/565204"}],"solutions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"According to Rockwell Automation, new RSLogix 5000 versions, V20.03 \nand V21.03, have been released that address this vulnerability. These \nreleases include mitigations that enhance password protection.
\nProject files created in earlier affected RSLogix 5000 versions of \nsoftware must be opened, resaved, and then downloaded to the appropriate\n controller to mitigate the risk associated with this discovered \nvulnerability.
\nIMPORTANT: Files with protected content that have been opened and \nupdate using enhanced software will no longer be compatible with earlier\n versions of RSLogix 5000 software. For example, a V20.01 project file \nwith protected content that has been opened and resaved using V20.03 \nsoftware can only be opened with V20.03 and higher versions of software.\n Also, a V21.00 project file with protected content that has been opened\n and resaved using V21.03 software can only be opened with V21.03 and \nhigher versions of software.
For the procedure to update project files, please refer to Rockwell Automation Knowledgebase AID:565204 available here: https://rockwellautomation.custhelp.com/app/answers/detail/a_id/565204 .
\nIn addition to using current RSLogix 5000 software, Rockwell \nAutomation also recommends the following actions to all concerned \ncustomers:
\nRockwell Automation encourages their customers to subscribe to \nRockwell Automation’s Security Advisory Index (AID:54102)Rockwell \nAutomation Knowledgebase AID:54102, \nhttps://rockwellautomation.custhelp.com/app/answers/detail/a_id/54102, \nWeb site last accessed February 04, 2014. for new and relevant \ninformation relating to this and other security-related matters.
\nFor more information and for assistance with assessing the state of \nsecurity of your existing control system, including improving your \nsystem-level security when using Rockwell Automation and other vendor \ncontrols products, you can visit the Rockwell Automation Security \nSolutions Web site at \nhttp://www.rockwellautomation.com/solutions/security.
\n\n