259 matches found
CVE-2021-20599
CVE-2021-20599 affects Mitsubishi Electric MELSEC iQ-R Series: vulnerable components are Safety CPU R08/16/32/120SFCPU with firmware versions prior to 27 and SIL2 Process CPU R08/16/32/120PSFCPU prior to 11. The issue is cleartext transmission of credentials, allowing a remote unauthenticated att...
CVE-2021-20599
Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and MELSEC iQ-R series SIL2 Process CPU R08/16/32/120PSFCPU firmware versions "11" and prior allows a...
CVE-2021-20599
Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and MELSEC iQ-R series SIL2 Process CPU R08/16/32/120PSFCPU firmware versions "11" and prior allows a...
PT-2021-8029 · Mitsubishi · Melsec Iq-R Series Sil2 Process Cpu +1
Name of the Vulnerable Software and Affected Versions: MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU versions prior to 26 MELSEC iQ-R series SIL2 Process CPU R08/16/32/120PSFCPU versions prior to 11 Description: The issue is related to the transmission of credentials in an unencrypted form,...
Mitsubishi Electric MELSEC iQ-R series 安全漏洞
Mitsubishi Electric MELSEC iQ-R series is a programmable logic controller from Mitsubishi Electric Japan. A security vulnerability exists in the Mitsubishi Electric MELSEC iQ-R series series Secure CPU R08/16/32/120SFCPU and the MELSEC iQ-R series SIL2 Process CPU R08/16/32/120PSFCPU, which can b...
CVE-2021-20600
Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firmware Versions "16" and prior allows a remote unauthenticated attacker to cause a denial-of-service DoS condition by sending a large number of packets in a short time while the module...
CVE-2021-20600
Summary: CVE-2021-20600 affects Mitsubishi Electric MELSEC iQ-R Series C Controller Module R12CCPU-V (firmware version 16 and earlier). An attacker can remotely trigger a DoS by sending a high volume of packets during startup, potentially preventing the module from starting and requiring a system...
CVE-2021-20600
Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firmware Versions "16" and prior allows a remote unauthenticated attacker to cause a denial-of-service DoS condition by sending a large number of packets in a short time while the module...
PT-2021-14068 · Mitsubishi · Melsec Iq-R Series C Controller Module R12Ccpu-V
Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V versions 16 and prior Description: The issue allows a remote unauthenticated attacker to cause a denial-of-service DoS condition by sending a large number of packets in a...
Mitsubishi Electric MELSEC iQ-R series 资源管理错误漏洞
The Mitsubishi Electric MELSEC iQ-R series is a programmable logic controller from Mitsubishi Electric Japan. A resource management error vulnerability exists in the Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V, which can be exploited by an attacker to send a large number ...
Mitsubishi Electric MELSEC iQ-R Series C Controller Module (Update B)
1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION: Exploitable remotely Vendor: Mitsubishi Electric Equipment: MELSEC iQ-R Series C Controller Module R12CCPU-V Vulnerability: Uncontrolled Resource Consumption 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled...
Mitsubishi Electric MELSEC iQ-R Series
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION : Exploitable remotely Vendor : Mitsubishi Electric Corporation Equipment : MELSEC iQ-R Series CPU Module Vulnerabilities : Exposure of Sensitive Information to an Unauthorized Actor, Insufficiently Protected Credentials, Overly Restrictive...
Mitsubishielectric Melsec Uncontrolled Resource Consumption
Uncontrolled resource consumption vulnerability in Ethernet Port on MELSEC iQ-R, Q and L series CPU modules R 00/01/02 CPU firmware versions '20' and earlier, R 04/08/16/32/120 EN CPU firmware versions '52' and earlier, R 08/16/32/120 SFCPU firmware versions '22' and earlier, R 08/16/32/120 PCPU...
CVE-2021-20597
Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU firmware versions "11" and prior allows a...
CVE-2021-20594
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU firmware versions "11"...
Design/Logic Flaw
Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU all versions allows a remote unauthenticated...
Design/Logic Flaw
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU all versions allows a...
Design/Logic Flaw
Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules R08/16/32/120SFCPU all versions, R08/16/32/120PSFCPU all versions allows a remote unauthenticated attacker to lockout a legitimate user by continuously trying login with incorrect...
CVE-2021-20598
Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules R08/16/32/120SFCPU all versions, R08/16/32/120PSFCPU all versions allows a remote unauthenticated attacker to lockout a legitimate user by continuously trying login with incorrect...
CVE-2021-20598
The CVE-2021-20598 issue affects Mitsubishi Electric MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU and related SIL2 Process CPU R08/16/32/120PSFCPU, where an anti-brute-force function incorrectly locks out all users after multiple failed logins, enabling a remote attacker to disrupt legitimate...