EUVD-2021-8017

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Cleartext transmission vulnerability in MELSEC iQ-R series allowing unauthorized CPU access.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2021-20599	14 Oct 202118:27	–	circl
CNNVD	Mitsubishi Electric MELSEC iQ-R series 安全漏洞	14 Oct 202100:00	–	cnnvd
CVE	CVE-2021-20599	14 Oct 202100:00	–	cve
Cvelist	CVE-2021-20599	14 Oct 202100:00	–	cvelist
ICS	Mitsubishi Electric MELSEC iQ-R Series	6 Aug 202106:00	–	ics
NVD	CVE-2021-20599	14 Oct 202115:15	–	nvd
Prion	Default credentials	14 Oct 202115:15	–	prion
Positive Technologies	PT-2021-8029 · Mitsubishi · Melsec Iq-R Series Sil2 Process Cpu +1	14 Oct 202100:00	–	ptsecurity
RedhatCVE	CVE-2021-20599	22 May 202520:59	–	redhatcve
Tenable Nessus	Mitsubishi Electric MELSEC iQ-R Series Cleartext Transmission of Sensitive Information (CVE-2021-20599)	7 Feb 202200:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "796ef6e0-d36a-3a19-bb22-600a13f813e0",
        "vendor": {
          "name": "Mitsubishi Electric Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "346f9c0f-b6a7-3205-8fde-eeca5c71a541",
        "product": {
          "name": "MELSEC iQ-R Series Safety CPU R120SFCPU"
        },
        "product_version": "Firmware versions \"26\" and prior"
      },
      {
        "id": "5958364c-d645-3dd2-8863-a547a66cb9c9",
        "product": {
          "name": "MELSEC iQ-R Series Safety CPU R08SFCPU"
        },
        "product_version": "Firmware versions \"26\" and prior"
      },
      {
        "id": "77651491-6e05-3d00-a0fb-b911b2bc28e2",
        "product": {
          "name": "MELSEC iQ-R Series SIL2 Process CPU R120PSFCPU"
        },
        "product_version": "Firmware versions \"11\" and prior"
      },
      {
        "id": "9307fef3-0ef0-30d0-93d6-ff5527e7485c",
        "product": {
          "name": "MELSEC iQ-R Series SIL2 Process CPU R32PSFCPU"
        },
        "product_version": "Firmware versions \"11\" and prior"
      },
      {
        "id": "bad09869-6da3-3bf1-a6ef-55e5bd57d950",
        "product": {
          "name": "MELSEC iQ-R Series Safety CPU R32SFCPU"
        },
        "product_version": "Firmware versions \"26\" and prior"
      },
      {
        "id": "c29c2db6-6ae7-39e4-be2b-c3df3398244f",
        "product": {
          "name": "MELSEC iQ-R Series SIL2 Process CPU R16PSFCPU"
        },
        "product_version": "Firmware versions \"11\" and prior"
      },
      {
        "id": "d5de5760-bb17-31ed-86ba-c7513c9d16cb",
        "product": {
          "name": "MELSEC iQ-R Series Safety CPU R16SFCPU"
        },
        "product_version": "Firmware versions \"26\" and prior"
      },
      {
        "id": "f7b25207-e94d-31c1-a3b2-d47adef23764",
        "product": {
          "name": "MELSEC iQ-R Series SIL2 Process CPU R08PSFCPU"
        },
        "product_version": "Firmware versions \"11\" and prior"
      }
    ]
  }
]

Source	Link
mitsubishielectric	www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-011_en.pdf
jvn	www.jvn.jp/vu/JVNVU98578731
cisa	www.cisa.gov/uscert/ics/advisories/icsa-21-287-03

03 Oct 2025 20:07Current

7.5High risk

Vulners AI Score7.5

CVSS 3.17.5 - 9.1

CVSS 25

EPSS0.00332

SSVC