CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
75.5%
Out-of-bounds read vulnerability in GT21 model of GOT2000 series (GT2107-WTBD V01.39.000 and earlier, GT2107-WTSD V01.39.000 and earlier, GT2104-RTBD V01.39.000 and earlier, GT2104-PMBD V01.39.000 and earlier, and GT2103-PMBD V01.39.000 and earlier), GS21 model of GOT series (GS2110-WTBD V01.39.000 and earlier, GS2107-WTBD V01.39.000 and earlier, GS2110-WTBD-N V01.39.000 and earlier, and GS2107-WTBD-N V01.39.000 and earlier), and Tension Controller LE7-40GU-L series (LE7-40GU-L Screen package data for CC-Link IEF Basic V1.00, LE7-40GU-L Screen package data for MODBUS/TCP V1.00, and LE7-40GU-L Screen package data for SLMP V1.00) allows a remote attacker to cause a denial-of-service (DoS) condition by sending a specially crafted packet. As a result, deterioration of communication performance or a denial-of-service (DoS) condition of the TCP communication functions of the products may occur.
Vendor | Product | Version | CPE |
---|---|---|---|
mitsubishielectric | gt2107-wtbd_firmware | * | cpe:2.3:o:mitsubishielectric:gt2107-wtbd_firmware:*:*:*:*:*:*:*:* |
mitsubishielectric | gt2107-wtbd | - | cpe:2.3:h:mitsubishielectric:gt2107-wtbd:-:*:*:*:*:*:*:* |
mitsubishielectric | gt2107-wtsd_firmware | * | cpe:2.3:o:mitsubishielectric:gt2107-wtsd_firmware:*:*:*:*:*:*:*:* |
mitsubishielectric | gt2107-wtsd | - | cpe:2.3:h:mitsubishielectric:gt2107-wtsd:-:*:*:*:*:*:*:* |
mitsubishielectric | gt2104-rtbd_firmware | * | cpe:2.3:o:mitsubishielectric:gt2104-rtbd_firmware:*:*:*:*:*:*:*:* |
mitsubishielectric | gt2104-rtbd | - | cpe:2.3:h:mitsubishielectric:gt2104-rtbd:-:*:*:*:*:*:*:* |
mitsubishielectric | gt2104-pmbd_firmware | * | cpe:2.3:o:mitsubishielectric:gt2104-pmbd_firmware:*:*:*:*:*:*:*:* |
mitsubishielectric | gt2104-pmbd | - | cpe:2.3:h:mitsubishielectric:gt2104-pmbd:-:*:*:*:*:*:*:* |
mitsubishielectric | gt2103-pmbd_firmware | * | cpe:2.3:o:mitsubishielectric:gt2103-pmbd_firmware:*:*:*:*:*:*:*:* |
mitsubishielectric | gt2103-pmbd | - | cpe:2.3:h:mitsubishielectric:gt2103-pmbd:-:*:*:*:*:*:*:* |
[
{
"product": "GT21 model of GOT2000 series, GS21 model of GOT SIMPLE series, and Tension Controller LE7-40GU-L series",
"vendor": "Mitsubishi Electric Corporation",
"versions": [
{
"status": "affected",
"version": "GT21 model of GOT2000 series (GT2107-WTBD V01.39.000 and earlier, GT2107-WTSD V01.39.000 and earlier, GT2104-RTBD V01.39.000 and earlier, GT2104-PMBD V01.39.000 and earlier, and GT2103-PMBD V01.39.000 and earlier), GS21 model of GOT series (GS2110-WTBD V01.39.000 and earlier, GS2107-WTBD V01.39.000 and earlier, GS2110-WTBD-N V01.39.000 and earlier, and GS2107-WTBD-N V01.39.000 and earlier), and Tension Controller LE7-40GU-L series (LE7-40GU-L Screen package data for CC-Link IEF Basic V1.00, LE7-40GU-L Screen package data for MODBUS/TCP V1.00, and LE7-40GU-L Screen package data for SLMP V1.00)"
}
]
}
]
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
75.5%