Sign-up

ID

VAR-202009-1705


TITLE

Mitsubishi Electric Corporation GX Works2 has a denial of service vulnerability (CNVD-2020-49074)

Trust: 0.6

sources: CNVD: CNVD-2020-49074

DESCRIPTION

GX Work2 is a PLC programming software developed by Mitsubishi Electric Automation Co., Ltd. It is used for PLC design, debugging, and maintenance. It is widely used in power, machinery manufacturing, steel, petroleum, chemical and other industrial control fields. Mitsubishi Electric Corporation GX Works2 has a denial of service vulnerability, which can be exploited by attackers to cause a denial of service.

Trust: 0.6

sources: CNVD: CNVD-2020-49074

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2020-49074

AFFECTED PRODUCTS

vendor:mitsubishi electricmodel:gx works2 ver 1591rscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2020-49074

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2020-49074
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2020-49074
severity: MEDIUM
baseScore: 4.9
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2020-49074

PATCH

title:Mitsubishi Electric PLC host computer software GX Works2 has a denial of service vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/227287

Trust: 0.6

sources: CNVD: CNVD-2020-49074

EXTERNAL IDS

db:CNVDid:CNVD-2020-49074

Trust: 0.6

sources: CNVD: CNVD-2020-49074

SOURCES

db:CNVDid:CNVD-2020-49074

LAST UPDATE DATE

2022-05-04T09:38:01.122000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2020-49074date:2021-03-09T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2020-49074date:2020-09-06T00:00:00