Lucene search

[email protected]NVD:CVE-2021-20610

HistoryDec 01, 2021 - 4:15 p.m.

CVE-2021-20610

2021-12-0116:15:07

CWE-130

[email protected]

web.nvd.nist.gov

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

61.3%

JSON

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery.

Affected configurations

NVD

Node

mitsubishimelsec_iq-r_r00_cpu_firmwareRange≤24

AND

mitsubishimelsec_iq-r_r00_cpuMatch-

Node

mitsubishimelsec_iq-r_r01_cpu_firmwareRange≤24

AND

mitsubishimelsec_iq-r_r01_cpuMatch-

Node

mitsubishimelsec_iq-r_r02_cpu_firmwareRange≤24

AND

mitsubishimelsec_iq-r_r02_cpuMatch-

Node

mitsubishimelsec_iq-r_r04_cpu_firmwareRange≤57

AND

mitsubishimelsec_iq-r_r04_cpuMatch-

Node

mitsubishimelsec_iq-r_r08_cpu_firmwareRange≤57

AND

mitsubishimelsec_iq-r_r08_cpuMatch-

Node

mitsubishimelsec_iq-r_r120_cpu_firmwareRange≤57

AND

mitsubishimelsec_iq-r_r120_cpuMatch-

Node

mitsubishimelsec_iq-r_r16_cpu_firmwareRange≤57

AND

mitsubishimelsec_iq-r_r16_cpuMatch-

Node

mitsubishimelsec_iq-r_r32_cpu_firmwareRange≤57

AND

mitsubishimelsec_iq-r_r32_cpuMatch-

Node

mitsubishimelsec_iq-r_r04_pcpu_firmwareRange≤29

AND

mitsubishimelsec_iq-r_r04_pcpuMatch-

Node

mitsubishimelsec_iq-r_r08_pcpu_firmwareRange≤29

AND

mitsubishimelsec_iq-r_r08_pcpuMatch-

Node

mitsubishimelsec_iq-r_r16_pcpu_firmwareRange≤29

AND

mitsubishimelsec_iq-r_r16_pcpuMatch-

Node

mitsubishimelsec_iq-r_r32_pcpu_firmwareRange≤29

AND

mitsubishimelsec_iq-r_r32_pcpuMatch-

Node

mitsubishimelsec_iq-r_r120_pcpu_firmwareRange≤29

AND

mitsubishimelsec_iq-r_r120_pcpuMatch-

Node

mitsubishimelsec_iq-r_r08_sfcpu_firmware

AND

mitsubishimelsec_iq-r_r08_sfcpuMatch-

Node

mitsubishimelsec_iq-r_r16_sfcpu_firmware

AND

mitsubishimelsec_iq-r_r16_sfcpuMatch-

Node

mitsubishimelsec_iq-r_r32_sfcpu_firmware

AND

mitsubishimelsec_iq-r_r32_sfcpuMatch-

Node

mitsubishimelsec_iq-r_r120_sfcpu_firmware

AND

mitsubishimelsec_iq-r_r120_sfcpuMatch-

Node

mitsubishimelsec_iq-r_r16_mtcpu_firmware

AND

mitsubishimelsec_iq-r_r16_mtcpuMatch-

Node

mitsubishimelsec_iq-r_r32_mtcpu_firmware

AND

mitsubishimelsec_iq-r_r32_mtcpuMatch-

Node

mitsubishimelsec_iq-r_r64_mtcpu_firmware

AND

mitsubishimelsec_iq-r_r64_mtcpuMatch-

Node

mitsubishimelsec_iq-r_r12_ccpu-v_firmware

AND

mitsubishimelsec_iq-r_r12_ccpu-vMatch-

Node

mitsubishimelsec_q03udecpu_firmware

AND

mitsubishimelsec_q03udecpuMatch-

Node

mitsubishimelsec_q04udecpu_firmware

AND

mitsubishimelsec_q04udecpuMatch-

Node

mitsubishimelsec_q06udecpu_firmware

AND

mitsubishimelsec_q06udecpuMatch-

Node

mitsubishimelsec_q10udecpu_firmware

AND

mitsubishimelsec_q10udecpuMatch-

Node

mitsubishimelsec_q13udecpu_firmware

AND

mitsubishimelsec_q13udecpuMatch-

Node

mitsubishimelsec_q20udecpu_firmware

AND

mitsubishimelsec_q20udecpuMatch-

Node

mitsubishimelsec_q26udecpu_firmware

AND

mitsubishimelsec_q26udecpuMatch-

Node

mitsubishimelsec_q50udecpu_firmware

AND

mitsubishimelsec_q50udecpuMatch-

Node

mitsubishimelsec_q100udecpu_firmware

AND

mitsubishimelsec_q100udecpuMatch-

Node

mitsubishimelsec_q03udvcpu_firmwareMatch-

AND

mitsubishimelsec_q03udvcpuMatch-

Node

mitsubishimelsec_q04udvcpu_firmwareMatch-

AND

mitsubishimelsec_q04udvcpuMatch-

Node

mitsubishimelsec_q06udvcpu_firmwareMatch-

AND

mitsubishimelsec_q06udvcpuMatch-

Node

mitsubishimelsec_q13udvcpu_firmwareMatch-

AND

mitsubishimelsec_q13udvcpuMatch-

Node

mitsubishimelsec_q26udvcpu_firmwareMatch-

AND

mitsubishimelsec_q26udvcpuMatch-

Node

mitsubishimelsec_q04udpvcpu_firmwareMatch-

AND

mitsubishimelsec_q04udpvcpuMatch-

Node

mitsubishimelsec_q06udpvcpu_firmwareMatch-

AND

mitsubishimelsec_q06udpvcpuMatch-

Node

mitsubishimelsec_q13udpvcpu_firmwareMatch-

AND

mitsubishimelsec_q13udpvcpuMatch-

Node

mitsubishimelsec_q26udpvcpu_firmwareMatch-

AND

mitsubishimelsec_q26udpvcpuMatch-

Node

mitsubishimelsec_q12dccpu-v_firmware

AND

mitsubishimelsec_q12dccpu-vMatch-

Node

mitsubishimelsec_q24dhccpu-v\(g\)_firmware

AND

mitsubishimelsec_q24dhccpu-v\(g\)Match-

Node

mitsubishimelsec_q24dhccpu-ls_firmware

AND

mitsubishimelsec_q24dhccpu-lsMatch-

Node

mitsubishimelsec_q26dhccpu-ls_firmwareMatch-

AND

mitsubishimelsec_q26dhccpu-lsMatch-

Node

mitsubishimelsec_mr-mq100_firmware

AND

mitsubishimelsec_mr-mq100Match-

Node

mitsubishimelsec_q172dcpu-s1_firmware

AND

mitsubishimelsec_q172dcpu-s1Match-

Node

mitsubishimelsec_q173dcpu-s1_firmware

AND

mitsubishimelsec_q173dcpu-s1Match-

Node

mitsubishimelsec_q172dscpu_firmware

AND

mitsubishimelsec_q172dscpuMatch-

Node

mitsubishimelsec_q173dscpu_firmwareMatch-

AND

mitsubishimelsec_q173dscpuMatch-

Node

mitsubishimelsec_q170mscpu\(-s1\)_firmware

AND

mitsubishimelsec_q170mscpu\(-s1\)Match-

Node

mitsubishimelsec_q170mcpu_firmware

AND

mitsubishimelsec_q170mcpuMatch-

Node

mitsubishimelipc_mi5122-vw_firmware

AND

mitsubishimelipc_mi5122-vwMatch-

Node

mitsubishimelsec_l26cpu-\(p\)bt_firmware

AND

mitsubishimelsec_l26cpu-\(p\)btMatch-

Node

mitsubishimelsec_l26cpu\(-p\)_firmware

AND

mitsubishimelsec_l26cpu\(-p\)Match-

Node

mitsubishimelsec_l06cpu\(-p\)_firmware

AND

mitsubishimelsec_l06cpu\(-p\)Match-

Node

mitsubishimelsec_l02cpu\(-p\)_firmware

AND

mitsubishimelsec_l02cpu\(-p\)Match-

Node

mitsubishimelsec_iq-r_r08_cpu_firmware

AND

mitsubishimelsec_iq-r_r08_cpu

Node

mitsubishimelsec_iq-r_r16_cpu_firmware

AND

mitsubishimelsec_iq-r_r16_cpuMatch-

Node

mitsubishimelsec_iq-r_r32_cpu_firmware

AND

mitsubishimelsec_iq-r_r32_cpuMatch-

Node

mitsubishimelsec_iq-r_r120_cpu_firmware

AND

mitsubishimelsec_iq-r_r120_cpuMatch-

References

jvn.jp/vu/JVNVU94434051/index.html

us-cert.cisa.gov/ics/advisories/icsa-21-334-02

www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.002 Low

EPSS

Percentile

61.3%

JSON

Related for NVD:CVE-2021-20610

cve1 prion1 cvelist1 nessus1 ics1