Versio.io

CVE-2020-5668

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 20-11-2020 05:15
Last modified: - 29-04-2022 03:21
Total changes: - 3

Description

Uncontrolled resource consumption vulnerability in MELSEC iQ-R Series modules (R00/01/02CPU firmware version '19' and earlier, R04/08/16/32/120 (EN) CPU firmware version '51' and earlier, R08/16/32/120SFCPU firmware version '22' and earlier, R08/16/32/120PCPU firmware version '25' and earlier, R08/16/32/120PSFCPU firmware version '06' and earlier, RJ71EN71 firmware version '47' and earlier, RJ71GF11-T2 firmware version '47' and earlier, RJ72GF15-T2 firmware version '07' and earlier, RJ71GP21-SX firmware version '47' and earlier, RJ71GP21S-SX firmware version '47' and earlier, and RJ71GN11-T2 firmware version '11' and earlier) allows a remote unauthenticated attacker to cause an error in a CPU unit and cause a denial-of-service (DoS) condition in execution of the program and its communication, or to cause a denial-of-service (DoS) condition in communication via the unit by receiving a specially crafted SLMP packet

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Low
Attack complexity
Network
Attack vector
High
Availability
None
Confidentiality
None
Integrity
None
Privileges required
Unchanged
Scope
None
User interaction
7.5
Base score
3.9
3.6
Exploitability score
Impact score
 

Verification logic

OR
AND
OR
vendor=mitsubishielectric AND product=r00cpu_firmware AND versionEndIncluding=19
OR
vendor=mitsubishielectric AND product=r00cpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r01cpu_firmware AND versionEndIncluding=19
OR
vendor=mitsubishielectric AND product=r01cpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r02cpu_firmware AND versionEndIncluding=19
OR
vendor=mitsubishielectric AND product=r02cpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r04cpu_firmware AND versionEndIncluding=51
OR
vendor=mitsubishielectric AND product=r04cpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r08cpu_firmware AND versionEndIncluding=51
OR
vendor=mitsubishielectric AND product=r08cpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r16cpu_firmware AND versionEndIncluding=51
OR
vendor=mitsubishielectric AND product=r16cpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r32cpu_firmware AND versionEndIncluding=51
OR
vendor=mitsubishielectric AND product=r32cpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r120cpu_firmware AND versionEndIncluding=51
OR
vendor=mitsubishielectric AND product=r120cpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r08sfcpu_firmware AND versionEndIncluding=22
OR
vendor=mitsubishielectric AND product=r08sfcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r16sfcpu_firmware AND versionEndIncluding=22
OR
vendor=mitsubishielectric AND product=r16sfcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r32sfcpu_firmware AND versionEndIncluding=22
OR
vendor=mitsubishielectric AND product=r32sfcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r120sfcpu_firmware AND versionEndIncluding=22
OR
vendor=mitsubishielectric AND product=r120sfcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r08pcpu_firmware AND versionEndIncluding=25
OR
vendor=mitsubishielectric AND product=r08pcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r16pcpu_firmware AND versionEndIncluding=25
OR
vendor=mitsubishielectric AND product=r16pcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r32pcpu_firmware AND versionEndIncluding=25
OR
vendor=mitsubishielectric AND product=r32pcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r120pcpu_firmware AND versionEndIncluding=25
OR
vendor=mitsubishielectric AND product=r120pcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r08psfcpu_firmware AND versionEndIncluding=06
OR
vendor=mitsubishielectric AND product=r08psfcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r16psfcpu_firmware AND versionEndIncluding=06
OR
vendor=mitsubishielectric AND product=r16psfcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r32psfcpu_firmware AND versionEndIncluding=06
OR
vendor=mitsubishielectric AND product=r32psfcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=r120psfcpu_firmware AND versionEndIncluding=06
OR
vendor=mitsubishielectric AND product=r120psfcpu AND version=-
AND
OR
vendor=mitsubishielectric AND product=rj71en71_firmware AND versionEndIncluding=47
OR
vendor=mitsubishielectric AND product=rj71en71 AND version=-
AND
OR
vendor=mitsubishielectric AND product=rj71gf11-t2_firmware AND versionEndIncluding=47
OR
vendor=mitsubishielectric AND product=rj71gf11-t2 AND version=-
AND
OR
vendor=mitsubishielectric AND product=rj72gf15-t2_firmware AND versionEndIncluding=07
OR
vendor=mitsubishielectric AND product=rj72gf15-t2 AND version=-
AND
OR
vendor=mitsubishielectric AND product=rj71gp21-sx_firmware AND versionEndIncluding=47
OR
vendor=mitsubishielectric AND product=rj71gp21-sx AND version=-
AND
OR
vendor=mitsubishielectric AND product=rj71gp21s-sx_firmware AND versionEndIncluding=47
OR
vendor=mitsubishielectric AND product=rj71gp21s-sx AND version=-
AND
OR
vendor=mitsubishielectric AND product=rj71c24-r2_firmware AND versionEndIncluding=47
OR
vendor=mitsubishielectric AND product=rj71c24-r2 AND version=-
AND
OR
vendor=mitsubishielectric AND product=rj71c24-r4_firmware AND versionEndIncluding=47
OR
vendor=mitsubishielectric AND product=rj71c24-r4 AND version=-
AND
OR
vendor=mitsubishielectric AND product=rj71gn11-t2_firmware AND versionEndIncluding=11
OR
vendor=mitsubishielectric AND product=rj71gn11-t2 AND version=-
 

Reference

 


Keywords

NVD

 

CVE-2020-5668

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.