PT-2021-14063 · Mitsubishi · Melsec Iq-R Series Cpu Modules
Published
2021-06-11
·
Updated
2021-06-22
·
CVE-2021-20591
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions:
Mitsubishi Electric MELSEC iQ-R series CPU modules versions R00/01/02CPU all versions
Mitsubishi Electric MELSEC iQ-R series CPU modules versions R04/08/16/32/120(EN)CPU all versions
Mitsubishi Electric MELSEC iQ-R series CPU modules versions R08/16/32/120SFCPU all versions
Mitsubishi Electric MELSEC iQ-R series CPU modules versions R08/16/32/120PCPU all versions
Mitsubishi Electric MELSEC iQ-R series CPU modules versions R08/16/32/120PSFCPU all versions
Description:
The issue allows a remote unauthenticated attacker to prevent legitimate clients from connecting to the MELSOFT transmission port (TCP/IP) by not closing a connection properly, which may lead to a denial of service (DoS) condition.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Melsec Iq-R Series Cpu Modules