CVE•Published 2017-02-13•Modified 2026-05-13•1 article on news•5 live references•NVD data
CVE-2016-9343Rockwellautomation · Softlogix_5800_controller_firmware
Vulnerability data via NVD (ingested)
CVSS v3.1
10.0
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS percentile
—
Weaknesses (CWE)
Description
An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 (excluding all firmware versions prior to FRN 16.00, which are not affected). By sending malformed common industrial protocol (CIP) packet, an attacker may be able to overflow a stack-based buffer and execute code on the controller or initiate a nonrecoverable fault resulting in a denial of service.
Timeline
Published 2017-02-13
Modified 2026-05-13
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
Shodan · vuln tag0 hosts
vuln:CVE-2016-9343Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · OS
os:"Softlogix 5800 Controller Firmware"Hosts Shodan identified as running Softlogix 5800 Controller Firmware.
More intel sources (5)
Shodan report
vuln:CVE-2016-9343Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2016-9343Censys host search filtered to this CVE id.
grep.app
CVE-2016-9343Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2016-9343GitHub code search for direct mentions.
Google dork
"CVE-2016-9343" exploit -site:nvd.nist.govWrite-ups and news, NVD excluded.
Known PoCs on GitHub
No public proof-of-concept repositories found for CVE-2016-9343 on GitHub.