CVE-2020-5527

Published: Mar 30, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

When MELSOFT transmission port (UDP/IP) of Mitsubishi Electric MELSEC iQ-R series (all versions), MELSEC iQ-F series (all versions), MELSEC Q series (all versions), MELSEC L series (all versions), and MELSEC F series (all versions) receives massive amount of data via unspecified vectors, resource consumption occurs and the port does not process the data properly. As a result, it may fall into a denial-of-service (DoS) condition. The vendor states this vulnerability only affects Ethernet communication functions.

Vendor	Product	Versions
Mitsubishi Electric Corporation	MELSOFT transmission port (UDP/IP) of multiple Mitsubishi Electric MELSEC series	affected `MELSEC iQ-R series (all versions), MELSEC iQ-F series (all versions), MELSEC Q series (all versions), MELSEC L series (all versions), and MELSEC F series (all versions)`

References

https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2019-005_en.pdf

x_refsource_MISC

https://jvn.jp/en/vu/JVNVU91553662/index.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-5527

Description

Affected Products

References