Mitsubishi Electric GOC35 Series

Risk Summary

Successful exploitation of this vulnerability could lead to a communication error and may result in a denial-of-service condition.

CVEs (1)

Remediations

• Mitsubishi Electric India has released the following countermeasure/mitigation:
• The firmware of Extension unit GC-ENET-COM where the first 2 digits of the 11-digit serial number starting with “17” have been fixed. The firmware update in Extension unit GC-ENET-COM is only available from the vendor. Users should contact a local Mitsubishi Electric India representative.
• Mitsubishi Electric India recommends users take the following mitigations to minimize the risk of attackers exploiting this vulnerability if the mentioned countermeasures cannot be implemented.
• Use a firewall, virtual private network (VPN), etc. to prevent unauthorized access when internet access is required.
• Locate control system networks and remote devices behind firewalls and isolate them from the business network to restrict access from untrusted networks and hosts.
• Restrict physical access to your computer and network equipment on the same network.

Affected Vendors

Affected Products (1)

Affected Sectors

Critical Manufacturing