Severity
High
Analysis Summary
CVE-2021-20587
A malicious attacker may cause a denial-of-service condition by spoofing MELSEC, GOT, or FREQROL, and returning crafted reply packets.
CVE-2021-20588
A malicious attacker may cause a denial-of-service condition by spoofing MELSEC, GOT, or FREQROL, and returning crafted reply packets.
Impact
- Denial of Service
Affected Vendors
Mitsubishi Electric
Affected Products
- CPU Module Logging Configuration Tool Version 1.118X or later
- CW Configurator Version 1.012N or later
Remediation
Refer to Mitsubishi Electric websites for the latest patches and updates.