Sign-up

ID

VAR-201910-1746


TITLE

Mitsubishi FX5U series PLC Denial of service vulnerability

Trust: 0.2

sources: IVD: 46df1c14-8592-4377-825f-6ab6cb9848da

DESCRIPTION

Mitsubishi FX5U series PLC It is the latest generation of Mitsubishi small programmable controller. Mitsubishi FX5U series PLC A denial of service vulnerability exists. Attackers can cause devices to fail by sending specially crafted packets ( by Gx Works Can't start normally, but can only be recovered by hardware power failure ) .

Trust: 0.2

sources: IVD: 46df1c14-8592-4377-825f-6ab6cb9848da

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.2

sources: IVD: 46df1c14-8592-4377-825f-6ab6cb9848da

AFFECTED PRODUCTS

vendor:mitsubishi electric automationmodel:fx5u seriesscope:eqversion:*

Trust: 0.2

sources: IVD: 46df1c14-8592-4377-825f-6ab6cb9848da

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD: 46df1c14-8592-4377-825f-6ab6cb9848da
value: MEDIUM

Trust: 0.2

IVD: 46df1c14-8592-4377-825f-6ab6cb9848da
severity: MEDIUM
baseScore: 4.9
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

sources: IVD: 46df1c14-8592-4377-825f-6ab6cb9848da

TYPE

Denial of service

Trust: 0.2

sources: IVD: 46df1c14-8592-4377-825f-6ab6cb9848da

EXTERNAL IDS

db:CNVDid:CNVD-2019-36599

Trust: 0.2

db:IVDid:46DF1C14-8592-4377-825F-6AB6CB9848DA

Trust: 0.2

sources: IVD: 46df1c14-8592-4377-825f-6ab6cb9848da

SOURCES

db:IVDid:46df1c14-8592-4377-825f-6ab6cb9848da

LAST UPDATE DATE

2022-05-17T01:47:50.314000+00:00


SOURCES UPDATE DATE


SOURCES RELEASE DATE

db:IVDid:46df1c14-8592-4377-825f-6ab6cb9848dadate:2019-10-22T00:00:00