CVE-2025-9278
HIGH WAF: Medium
CVSS 7.5
Published: 2026-01-20
CWE-400
A security issue exists within ArmorStart® LT that can result in a denial-of-service condition. After running a Burp Suite active scan, the device loses ICMP connectivity, causing the web application to become inaccessible.
WAF Coverage Analysis
Uncontrolled Resource Consumption
Medium WAF Coverage
OWASP: A05:2021 Security Misconfiguration
912xxx - DOS Protection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| rockwellautomation | armorstart_lt_firmware | up to 2.002 |
References
- www.rockwellautomation.com (Vendor Advisory)