CVE-2020-5603

Name of the Vulnerable Software and Affected Versions Mitsubishi Electric FA Engineering Software versions 1.94Y and earlier CW Configurator versions 1.010L and earlier EM Software Development Kit (EM Configurator) versions 1.010L and earlier GT Designer3 (GOT2000) versions 1.221F and earlier GX LogViewer versions 1.96A and earlier GX Works2 versions 1.586L and earlier GX Works3 versions 1.058L and earlier M CommDTM-HART version 1.00A M CommDTM-IO-Link versions 1.02C and earlier MELFA-Works versions 4.3 and earlier MELSEC-L Flexible High-Speed I/O Control Module Configuration Tool versions 1.004E and earlier MELSOFT FieldDeviceConfigurator versions 1.03D and earlier MELSOFT iQ AppPortal versions 1.11M and earlier MELSOFT Navigator versions 2.58L and earlier MI Configurator versions 1.003D and earlier Motion Control Setting versions 1.005F and earlier MR Configurator2 versions 1.72A and earlier MT Works2 versions 1.156N and earlier RT ToolBox2 versions 3.72A and earlier RT ToolBox3 versions 1.50C and earlier

Description The issue allows an attacker to cause a denial of service (DoS) condition via unspecified vectors, resulting from an uncontrolled resource consumption vulnerability.

Recommendations For Mitsubishi Electric FA Engineering Software version 1.94Y and earlier, update to a version later than 1.94Y. For CW Configurator versions 1.010L and earlier, update to a version later than 1.010L. For EM Software Development Kit (EM Configurator) versions 1.010L and earlier, update to a version later than 1.010L. For GT Designer3 (GOT2000) versions 1.221F and earlier, update to a version later than 1.221F. For GX LogViewer versions 1.96A and earlier, update to a version later than 1.96A. For GX Works2 versions 1.586L and earlier, update to a version later than 1.586L. For GX Works3 versions 1.058L and earlier, update to a version later than 1.058L. For M CommDTM-HART version 1.00A, update to a version later than 1.00A. For M CommDTM-IO-Link versions 1.02C and earlier, update to a version later than 1.02C. For MELFA-Works versions 4.3 and earlier, update to a version later than 4.3. For MELSEC-L Flexible High-Speed I/O Control Module Configuration Tool versions 1.004E and earlier, update to a version later than 1.004E. For MELSOFT FieldDeviceConfigurator versions 1.03D and earlier, update to a version later than 1.03D. For MELSOFT iQ AppPortal versions 1.11M and earlier, update to a version later than 1.11M. For MELSOFT Navigator versions 2.58L and earlier, update to a version later than 2.58L. For MI Configurator versions 1.003D and earlier, update to a version later than 1.003D. For Motion Control Setting versions 1.005F and earlier, update to a version later than 1.005F. For MR Configurator2 versions 1.72A and earlier, update to a version later than 1.72A. For MT Works2 versions 1.156N and earlier, update to a version later than 1.156N. For RT ToolBox2 versions 3.72A and earlier, update to a version later than 3.72A. For RT ToolBox3 versions 1.50C and earlier, update to a version later than 1.50C.