Sign-up

ID

VAR-202101-2034


TITLE

Denial of Service Vulnerability in MITSUBISHI FX3U-ENET-L

Trust: 0.6

sources: CNVD: CNVD-2020-70578

DESCRIPTION

FX3U-ENET-L has 4 communication channels, Mitsubishi PLC Ethernet module FX3U-ENET-L supports fixed buffer storage area communication, connection to MELSOFT, communication through MC series, email sending and other functions. When MELSOFT is connected, remote maintenance of PLC programs can be realized through GX Work2. MITSUBISHI FX3U-ENET-L has a denial of service vulnerability, which can be exploited by an attacker to cause a denial of service.

Trust: 0.6

sources: CNVD: CNVD-2020-70578

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2020-70578

AFFECTED PRODUCTS

vendor:mitsubishimodel:electric melsec-f series fx3u-enetscope:lteversion:<=1.14

Trust: 0.6

vendor:mitsubishimodel:electric melsec-f series fx3u-enet-lscope:lteversion:<=1.14

Trust: 0.6

vendor:mitsubishimodel:electric melsec-f series fx3u-enet-p502scope:lteversion:<=1.14

Trust: 0.6

sources: CNVD: CNVD-2020-70578

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2020-70578
value: HIGH

Trust: 0.6

CNVD: CNVD-2020-70578
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2020-70578

PATCH

title:Patch for Denial of Service Vulnerability in MITSUBISHI FX3U-ENET-Lurl:https://www.cnvd.org.cn/patchinfo/show/316596

Trust: 0.6

sources: CNVD: CNVD-2020-70578

EXTERNAL IDS

db:CNVDid:CNVD-2020-70578

Trust: 0.6

sources: CNVD: CNVD-2020-70578

SOURCES

db:CNVDid:CNVD-2020-70578

LAST UPDATE DATE

2022-05-04T08:33:12.147000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2020-70578date:2022-01-28T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2020-70578date:2021-01-16T00:00:00