Unknown
CVE-2021-20591
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2021-20591
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R00/01/02CPU all versions, R04/08/16/32/120(EN)CPU all versions, R08/16/32/120SFCPU all versions, R08/16/32/120PCPU all versions, R08/16/32/120PSFCPU all versions) allows a remote unauthenticated attacker to prevent legitimate clients from connecting to the MELSOFT transmission port (TCP/IP) by not closing a connection properly, which may lead to a denial of service (DoS) condition.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- r00cpu firmware,
- r01cpu firmware,
- r02cpu firmware,
- r04cpu firmware,
- r08cpu firmware,
- r08pcpu firmware,
- r08psfcpu firmware,
- r08sfcpu firmware,
- r120cpu firmware,
- r120pcpu firmware,
- r120psfcpu firmware,
- r120sfcpu firmware,
- r16cpu firmware,
- r16pcpu firmware,
- r16psfcpu firmware,
- r16sfcpu firmware,
- r32cpu firmware,
- r32pcpu firmware,
- r32psfcpu firmware,
- r32sfcpu firmware
Weaknesses
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
