CVE-2021-20612
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-20612
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Lack of administrator control over security vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.14 and prior, FX3U-ENET-L Firmware version 1.14 and prior and FX3U-ENET-P502 Firmware version 1.14 and prior allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition in communication function of the product or other unspecified effects by sending specially crafted packets to an unnecessary opening of TCP port. Control by MELSEC-F series PLC is not affected by this vulnerability, but system reset is required for recovery.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Mitsubishi Electric MELSEC-F Series 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Mitsubishi Electric MELSEC-F Series是日本三菱电机(Mitsubishi Electric)公司的工控设备具有模拟和通信功能可扩展性的基本微型 PLC。 Mitsubishi Electric MELSEC-F Series存在安全漏洞,该漏洞源于软件缺乏管理控制,这可能允许攻击者可利用该漏洞远程发送专门制作的数据包,并导致拒绝服务条件或其他未指定的影响。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | MELSEC-F series FX3U-ENET; MELSEC-F series FX3U-ENET-L; MELSEC-F series FX3U-ENET-P502 | Firmware version 1.14 and prior | - |
II. Public POCs for CVE-2021-20612
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-20612
请登录查看更多情报信息。
Vendor Advisories for CVE-2021-20612 (2)
- https://jvn.jp/vu/JVNVU93268332/index.htmlx_refsource_MISC
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-013-01x_refsource_MISC
Other References for CVE-2021-20612 (1)
Same Patch Batch · n/a · 2022-01-14 · 61 CVEs total
| CVE-2021-23567 | 7.5 HIGH | Denial of Service (DoS) |
| CVE-2021-23566 | 4.0 MEDIUM | Information Exposure |
| CVE-2021-46020 | mruby缓冲区错误漏洞 | |
| CVE-2021-39634 | Google Android 资源管理错误漏洞 | |
| CVE-2021-46169 | Modex 资源管理错误漏洞 | |
| CVE-2021-46168 | Spin缓冲区错误漏洞 | |
| CVE-2021-46021 | GNU Recutils 资源管理错误漏洞 | |
| CVE-2021-1037 | Google Android Automotive OS安全漏洞 | |
| CVE-2021-1036 | Android Automotive Os安全漏洞 | |
| CVE-2021-1035 | Android Automotive Os 安全漏洞 | |
| CVE-2021-39684 | Google Android 安全漏洞 | |
| CVE-2021-39683 | Google Android 缓冲区错误漏洞 | |
| CVE-2021-45773 | lib60870代码问题漏洞 | |
| CVE-2021-39682 | Google Android 缓冲区错误漏洞 | |
| CVE-2021-39681 | Google Android 资源管理错误漏洞 | |
| CVE-2021-39680 | Google Android 信息泄露漏洞 | |
| CVE-2021-39679 | Google Android 资源管理错误漏洞 | |
| CVE-2021-39678 | Google Android 安全漏洞 | |
| CVE-2021-39659 | Google Android 安全漏洞 | |
| CVE-2021-39633 | Google Android 缓冲区错误漏洞 |
Showing top 20 of 61 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2021-20612
No comments yet