CRITICAL🇵🇱 Wersja polska

CVE-2020-5531

CVSS 9.8v3.1pub. 2020-02-17upd. 2024-11-21

Mitsubishi Electric MELSEC C Controller Module and MELIPC Series MI5000 MELSEC-Q Series C Controller Module(Q24DHCCPU-V, Q24DHCCPU-VG User Ethernet port (CH1, CH2): First 5 digits of serial number 21121 or before), MELSEC iQ-R Series C Controller Module / C Intelligent Function Module(R12CCPU-V Ethernet port (CH1, CH2): First 2 digits of serial number 11 or before, and RD55UP06-V Ethernet port: First 2 digits of serial number 08 or before), and MELIPC Series MI5000(MI5122-VW Ethernet port (CH1): First 2 digits of serial number 03 or before, or the firmware version 03 or before) allow remote attackers to cause a denial of service and/or malware being executed via unspecified vectors.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Mitsubishielectric Mi5122 Vw

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Mi5122 Vw Firmware

    OS
    Mitsubishielectric
    ≤ 03
  • Mitsubishielectric Q24dhccpu V

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Q24dhccpu V Firmware

    OS
    Mitsubishielectric
    ≤ 21121
  • Mitsubishielectric Q24dhccpu Vg

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Q24dhccpu Vg Firmware

    OS
    Mitsubishielectric
    ≤ 21121
  • Mitsubishielectric R12ccpu V

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric R12ccpu V Firmware

    OS
    Mitsubishielectric
    ≤ 11
  • Mitsubishielectric Rd55up06 V

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Rd55up06 V Firmware

    OS
    Mitsubishielectric
    ≤ 08
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2020-16226CRITICAL9.8ten sam produkt

Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious a...

CVE-2020-5527HIGH7.5ten sam produkt

When MELSOFT transmission port (UDP/IP) of Mitsubishi Electric MELSEC iQ-R series (all versions), MELSEC iQ-F ...

CVE-2021-20600MEDIUM5.9ten sam produkt

Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firm...

CVE-2023-6943CRITICAL9.8PL ✓ten sam vendor

Unsafe Reflection w oprogramowaniu Mitsubishi Electric — zdalne wykonanie kodu

CVE-2023-4699CRITICAL10.0ten sam vendor

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series ...