Sign-up

ID

VAR-202009-1723


TITLE

Mitsubishi Electric Corporation GX Works2 has a denial of service vulnerability (CNVD-2020-49072)

Trust: 0.6

sources: CNVD: CNVD-2020-49072

DESCRIPTION

GX Work2 is a PLC programming software developed by Mitsubishi Electric Automation Co., Ltd. It is used for PLC design, debugging, and maintenance. It is widely used in power, machinery manufacturing, steel, petroleum, chemical and other industrial control fields. Mitsubishi Electric Corporation GX Works2 has a denial of service vulnerability, which can be exploited by attackers to cause a denial of service.

Trust: 0.6

sources: CNVD: CNVD-2020-49072

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2020-49072

AFFECTED PRODUCTS

vendor:mitsubishi electricmodel:gx works2 ver 1591rscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2020-49072

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2020-49072
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2020-49072
severity: MEDIUM
baseScore: 4.9
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2020-49072

PATCH

title:Mitsubishi Electric PLC host computer software GX Works2 has a denial of service vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/227283

Trust: 0.6

sources: CNVD: CNVD-2020-49072

EXTERNAL IDS

db:CNVDid:CNVD-2020-49072

Trust: 0.6

sources: CNVD: CNVD-2020-49072

SOURCES

db:CNVDid:CNVD-2020-49072

LAST UPDATE DATE

2022-05-04T08:52:33.146000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2020-49072date:2021-03-09T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2020-49072date:2020-09-06T00:00:00