ICSA-21-147-05
·
Published 2021-05-27
·
View on CISA ICS-CERT ↗
Mitsubishi Electric MELSEC iQ-R Series
CVSS 5.3
MEDIUM
Risk Summary
Successful exploitation of this vulnerability may prevent legitimate clients from connecting to an affected product.
CVEs (1)
Remediations
- Use a firewall, a virtual private network (VPN), etc., to prevent unauthorized access when Internet access is required.
- Use within a LAN and block access from untrusted networks and hosts through firewalls.
- Use the IP filter function to restrict the connectable IP addresses. See MELSEC iQ-R Ethernet User's Manual (Application) 1.13 Security “IP filter” for more information.
- Use the MELSOFT transmission port (UDP/IP).
- If Port 5007 of the MELSOFT transmission port (TCP/IP) is not used, set b2 to "1" in advance. See MELSEC iQ-R Ethernet User's Manual (Application) Appendix 3, Buffer Memory for more information.
- If this vulnerability is exploited, legitimate users can recover by first disabling the port with the forced connection invalidation function and then re-enabling the port. For an example see MELSEC iQ-R Ethernet User's Manual (Application) Appendix 3, Buffer Memory.
- Please refer to the Mitsubishi Electric advisory for further details.
Affected Vendors
Mitsubishi Electric
Affected Products (5)
Mitsubishi Electric
·
R08/16/32/120SFCPU
vers:all/*
Mitsubishi Electric
·
R00/01/02CPU
vers:all/*
Mitsubishi Electric
·
R08/16/32/120PCPU
vers:all/*
Mitsubishi Electric
·
R04/08/16/32/120(EN)CPU
vers:all/*
Mitsubishi Electric
·
R08/16/32/120PSFCPU
vers:all/*
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more