Description
Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R08/16/32/120SFCPU all versions, R08/16/32/120PSFCPU all versions) allows a remote unauthenticated attacker to lockout a legitimate user by continuously trying login with incorrect password.
Published: 2021-08-06
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2021-8016 Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R08/16/32/120SFCPU all versions, R08/16/32/120PSFCPU all versions) allows a remote unauthenticated attacker to lockout a legitimate user by continuously trying login with incorrect password.
History

No history.

Subscriptions

Mitsubishielectric R08psfcpu R08psfcpu Firmware R08sfcpu R08sfcpu Firmware R120psfcpu R120psfcpu Firmware R120sfcpu R120sfcpu Firmware R16psfcpu R16psfcpu Firmware R16sfcpu R16sfcpu Firmware R32psfcpu R32psfcpu Firmware R32sfcpu R32sfcpu Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: Mitsubishi

Published:

Updated: 2024-08-03T17:45:44.713Z

Reserved: 2020-12-17T00:00:00.000Z

Link: CVE-2021-20598

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-08-06T17:15:07.173

Modified: 2024-11-21T05:46:51.190

Link: CVE-2021-20598

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses