Request a Demo
Rewterz
Rewterz Threat Advisory – ICS: Johnson Controls exacqVision Server Bundle
October 8, 2021
Rewterz
Rewterz Threat Advisory – ICS: FATEK Automation And WinProladder Communication Server
October 8, 2021

Rewterz Threat Advisory – ICS: Mitsubishi Electric MELSEC iQ-R Series C Controller Module

Severity

High

Analysis Summary

CVE-2021-20600

The potential for a denial-of-service condition exists in MELSEC iQ-R series C Controller Module due to uncontrolled resource consumption caused by an attacker sending a large number of packets to the module at start-up in a short time.

Impact

  • Denial of Service

Affected Vendors

Mitsubishi Electric

Affected Products

  • R12CCPU-V: All versions

Remediation

Refer to US-CERT Advisory for patch, upgrade, or suggested workaround information.

https://us-cert.cisa.gov/ics/advisories/icsa-21-280-04