Details of VAR-202011-1532

ID

VAR-202011-1532

TITLE

FPWIN GR software has a denial of service vulnerability

Trust: 0.6

sources: CNVD: CNVD-2020-58409

DESCRIPTION

FPWIN GR is a PLC programming software developed by Panasonic. It is used for PLC design, debugging, and maintenance. It is widely used in power, machinery manufacturing, steel, petroleum, chemical and other industrial control fields. FPWIN GR software has a denial of service vulnerability. Remote attackers can use this vulnerability to send constructed malicious data packets, causing illegal memory access and denial of service.

Trust: 0.6

sources: CNVD: CNVD-2020-58409

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2020-58409

AFFECTED PRODUCTS

vendor:

panasonic

model:

fpwin gr

scope:

version:

v2.95

Trust: 0.6

sources: CNVD: CNVD-2020-58409

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2020-58409
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2020-58409
severity:	MEDIUM
baseScore:	6.1
vectorString:	AV:A/AC:L/AU:N/C:N/I:N/A:C
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.5
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2020-58409

EXTERNAL IDS

db:

CNVD

id:

CNVD-2020-58409

Trust: 0.6

sources: CNVD: CNVD-2020-58409

SOURCES

db:

CNVD

id:

CNVD-2020-58409

LAST UPDATE DATE

2022-05-04T09:42:15.524000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2020-58409

date:

2020-11-03T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2020-58409

date:

2020-11-23T00:00:00