CVE-2020-6984

HIGH

CVSS v3.1: 7.5 · EPSS: 0.0027 (50.8 percentile)

NetworkNo privilegesNo user interactionVendor advisory ref

Source data as of:

At a glance

Severity
HIGH
CVSS
7.5 v3.1 · NVD
EPSS
0.0027 (50.8 percentile) · FIRST.org
CISA KEV
No
Attack conditions (CVSS vector)
NetworkNo privilegesNo user interaction · Source: NVD Vector
Affected vendors
rockwellautomation
Published
2020-03-16 · Modified: 2026-06-03
References
Jump to references (1)

CVSS / EPSS / KEV

CVSS v3.1 7.5 / 10 HIGH Source: NVD
EPSS 0.0027 50.8 percentile Source: FIRST.org
CISA KEV No Source: CISA

Source — CVSS: NVD · EPSS: FIRST.org · KEV: CISA. Data & Sources

Description

Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versions, RSLogix 500 Software v12.001 and prior, The cryptographic function utilized to protect the password in MicroLogix is discoverable.

Record details

CVE ID
CVE-2020-6984
CVSS (v3.1)
7.5 (HIGH)
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability subscore
3.9
Impact subscore
3.6
EPSS
0.0027 (50.8 percentile) — 2026-06-04
CISA KEV
No
Weakness (CWE)
CWE-327
Affected vendors
rockwellautomation
Affected configurations (CPE)
4
Published
2020-03-16
Modified
2026-06-03
Status
Modified

References

Reference URLs as listed by NVD, grouped by a mechanical match on the link's host/pattern. Labels describe the link type only.

Related records

Other records sharing a factual facet, for cross-reference. A descriptive neighbourhood — ordering does not imply priority and is not a recommendation.

Same affected vendor

CVE-2012-6437 CRITICAL CVSS 9.8 CVE-2015-6490 CRITICAL CVSS 9.8 CVE-2017-7898 CRITICAL CVSS 9.8 CVE-2017-7903 CRITICAL CVSS 9.8

Same weakness type (CWE)

CVE-2026-36609 HIGH CVSS 7.3 CVE-2024-3264 MEDIUM CVSS 5.3 CVE-2026-10766 LOW CVSS 3.6 CVE-2026-10783 LOW CVSS 2.5

Published the same year

CVE-2020-6990 CRITICAL CVSS 9.8 CVE-2020-6988 HIGH CVSS 7.5
← Back to all records