HIGH🇵🇱 Wersja polska

CVE-2021-20592

CVSS 7.5v3.1pub. 2021-08-05upd. 2024-11-21

Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions 01.19.000 through 01.39.010 and GT23 model communication driver versions 01.19.000 through 01.39.010 and GT SoftGOT2000 versions 1.170C through 1.256S allows a remote unauthenticated attacker to cause DoS condition on the MODBUS/TCP slave communication function of the products by rapidly and repeatedly connecting and disconnecting to and from the MODBUS/TCP communication port on a target. Restart or reset is required to recover.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Mitsubishielectric Got2000 Gt23

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Got2000 Gt23 Firmware

    OS
    Mitsubishielectric
    01.19.000 – 01.39.010
  • Mitsubishielectric Got2000 Gt25

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Got2000 Gt25 Firmware

    OS
    Mitsubishielectric
    01.19.000 – 01.39.010
  • Mitsubishielectric Got2000 Gt27

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Got2000 Gt27 Firmware

    OS
    Mitsubishielectric
    01.19.000 – 01.39.010
  • Mitsubishielectric Gt Softgot2000

    APP
    Mitsubishielectric
    1.170c – 1.256s
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2020-5599CRITICAL9.8ten sam produkt

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and ear...

CVE-2020-5595CRITICAL9.8ten sam produkt

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and ear...

CVE-2023-51776HIGH7.8ten sam produkt

Improper privilege management in Jungo WinDriver before 12.1.0 allows local attackers to escalate privileges a...

CVE-2024-22106HIGH7.8ten sam produkt

Improper privilege management in Jungo WinDriver before 12.5.1 allows local attackers to escalate privileges, ...

CVE-2024-25086HIGH7.8ten sam produkt

Improper privilege management in Jungo WinDriver before 12.2.0 allows local attackers to escalate privileges a...