Unknown
CVE-2020-5668
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2020-5668
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Uncontrolled resource consumption vulnerability in MELSEC iQ-R Series modules (R00/01/02CPU firmware version ‘19’ and earlier, R04/08/16/32/120 (EN) CPU firmware version ‘51’ and earlier, R08/16/32/120SFCPU firmware version ‘22’ and earlier, R08/16/32/120PCPU firmware version ‘25’ and earlier, R08/16/32/120PSFCPU firmware version ‘06’ and earlier, RJ71EN71 firmware version ‘47’ and earlier, RJ71GF11-T2 firmware version ‘47’ and earlier, RJ72GF15-T2 firmware version ‘07’ and earlier, RJ71GP21-SX firmware version ‘47’ and earlier, RJ71GP21S-SX firmware version ‘47’ and earlier, and RJ71GN11-T2 firmware version ‘11’ and earlier) allows a remote unauthenticated attacker to cause an error in a CPU unit and cause a denial-of-service (DoS) condition in execution of the program and its communication, or to cause a denial-of-service (DoS) condition in communication via the unit by receiving a specially crafted SLMP packet
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- r00cpu firmware,
- r01cpu firmware,
- r02cpu firmware,
- r04cpu firmware,
- r08cpu firmware,
- r08pcpu firmware,
- r08psfcpu firmware,
- r08sfcpu firmware,
- r120cpu firmware,
- r120pcpu firmware,
- r120psfcpu firmware,
- r120sfcpu firmware,
- r16cpu firmware,
- r16pcpu firmware,
- r16psfcpu firmware,
- r16sfcpu firmware,
- r32cpu firmware,
- r32pcpu firmware,
- r32psfcpu firmware,
- r32sfcpu firmware,
- rj71c24-r2 firmware,
- rj71c24-r4 firmware,
- rj71en71 firmware,
- rj71gf11-t2 firmware,
- rj71gn11-t2 firmware,
- rj71gp21-sx firmware,
- rj71gp21s-sx firmware,
- rj72gf15-t2 firmware
Weaknesses
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
