ICSA-21-021-04
·
Published 2021-05-18
·
View on CISA ICS-CERT ↗
Mitsubishi Electric MELFA (Update A)
CVSS 7.5
HIGH
Risk Summary
Successful exploitation of this vulnerability could cause a denial-of-service condition.
CVEs (1)
Remediations
- Use a firewall or VPN, etc., to prevent unauthorized access when Internet access is required.
- Use within a LAN and block access from untrusted networks and hosts through firewalls.
- Use an IP filter function and block access from untrusted networks and hosts. The product models and firmware versions that support the IP filter function are:
- MELFA FR Series: firmware Version “C2” or later
- MELFA CR Series: firmware Version “C2” or later
- MELFA ASSISTA: firmware Version “C2” or later
- To obtain a product that supports the IP filter function, contact your local Mitsubishi Electric representative.
- Please refer to the Mitsubishi Electric advisory for details on how to check firmware version.
- Additional information about the vulnerabilities or Mitsubishi Electric's compensating control is available by contacting a Mitsubishi Electric representative.
Affected Vendors
Mitsubishi Electric
Affected Products (3)
Mitsubishi Electric
·
MELFA FR Series
vers:all/*
Mitsubishi Electric
·
MELFA CR Series
vers:all/*
Mitsubishi Electric
·
MELFA ASSISTA
vers:all/*
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more