CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2021/12/01 4:15 p.m.•19 views

Denial of service

Exploits0References3Affected Software13

Prion•added 2021/12/01 4:15 p.m.•21 views

Input validation

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120ENCPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Seri...

Exploits0References3Affected Software13

Prion•added 2021/12/01 4:15 p.m.•11 views

Input validation

Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120ENCPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC...

7.8CVSS7.5AI score0.02988EPSS

Exploits0References3Affected Software13

Cvelist•added 2021/12/01 3:41 p.m.•15 views

CVE-2021-20611

7.5CVSS7.7AI score0.02988EPSS

CVE•added 2021/12/01 3:41 p.m.•73 views

CVE-2021-20610

CVE-2021-20610 affects Mitsubishi Electric MELSEC iQ-R Series, MELSEC iQ-R/ MELIPC, MELSEC Q/L Series CPUs and related modules. The issue is Improper Handling of Length Parameter Inconsistency, allowing a remote unauthenticated attacker to cause a denial-of-service (DoS) by sending specially craf...

Exploits0References3Affected Software1

Cvelist•added 2021/12/01 3:41 p.m.•12 views

CVE-2021-20610

7.5CVSS7.7AI score0.03077EPSS

CVE•added 2021/12/01 3:41 p.m.•79 views

CVE-2021-20609

CVE-2021-20609 affects Mitsubishi Electric MELSEC MELSEC iQ-R/Q/L series and MELIPC devices. It is an Uncontrolled Resource Consumption (DoS) vulnerability exploitable remotely over network with no authentication; recovery requires a system reset. Connected sources (NVD/NIST, Red Hat, ICSA, Tenab...

Exploits0References3Affected Software1

CNNVD•added 2021/11/30 12:0 a.m.•2 views

多款Mitsubishi Electric产品安全漏洞

Mitsubishi Electric MELSEC-Q Series and others are products of Mitsubishi Electric, Japan.Mitsubishi Electric MELSEC-Q Series is a programmable logic controller of MELSEC-Q series.Mitsubishi Electric MELSEC-L Series is a programmable logic controller of MELSEC-L series. Mitsubishi Electric MELSEC...

7.8CVSS7.3AI score0.03077EPSS

CNNVD•added 2021/11/30 12:0 a.m.•2 views

Mitsubishi Electric MELSEC Q series 资源管理错误漏洞

The Mitsubishi Electric MELSEC Q series is a programmable logic controller from Mitsubishi Electric Japan. A resource management error vulnerability exists in the Mitsubishi Electric MELSEC Q series, which can be exploited by attackers to perform denial of service attacks. The following products...

7.8CVSS7.3AI score0.03077EPSS

Positive Technologies•added 2021/11/30 12:0 a.m.•2 views

PT-2021-5339 · Mitsubishi · Melipc Series +3

Name of the Vulnerable Software and Affected Versions: MELSEC iQ-R Series R00/01/02CPU versions 24 and prior MELSEC iQ-R Series R04/08/16/32/120ENCPU versions 57 and prior MELSEC iQ-R Series R08/16/32/120SFCPU versions 28 and prior MELSEC iQ-R Series R08/16/32/120PCPU versions 29 and prior MELSEC...

7.8CVSS7.3AI score0.03077EPSS

Positive Technologies•added 2021/11/30 12:0 a.m.•3 views

PT-2021-5415 · Mitsubishi · Melsec Iq-R Series R00/01/02Cpu +18

Name of the Vulnerable Software and Affected Versions: MELSEC iQ-R Series R00/01/02CPU versions 24 and prior MELSEC iQ-R Series R04/08/16/32/120ENCPU versions 57 and prior MELSEC iQ-R Series R08/16/32/120SFCPU all versions MELSEC iQ-R Series R08/16/32/120PCPU versions 29 and prior MELSEC iQ-R...

7.8CVSS7.4AI score0.02988EPSS

Exploits0References8

Positive Technologies•added 2021/11/30 12:0 a.m.•3 views

PT-2021-5309 · Mitsubishi · Melipc Series +3

CNNVD•added 2021/11/30 12:0 a.m.•4 views

Mitsubishi Electric MELSEC iQ-R series 输入验证错误漏洞

The Mitsubishi Electric MELSEC iQ-R series is a programmable logic controller from Mitsubishi Electric Japan. An input validation error vulnerability exists in the Mitsubishi Electric MELSEC iQ-R series, which arises from a lack of proper control over the allocation and maintenance of finite...

7.8CVSS7.3AI score0.02988EPSS

NVD•added 2021/10/14 3:15 p.m.•14 views

CVE-2021-20599

Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and MELSEC iQ-R series SIL2 Process CPU R08/16/32/120PSFCPU firmware versions "11" and prior allows a...

9.1CVSS0.01304EPSS

Prion•added 2021/10/14 3:15 p.m.•18 views

Default credentials

Cleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and MELSEC iQ-R series SIL2 Process CPU R08/16/32/120PSFCPU all versions allows a remote unauthenticated attacker to login to a target CPU module by...

5CVSS7.4AI score0.01304EPSS