CVE-2021-20609 - OpenCVE

Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:N/AC:L/Au:N/C:N/I:N/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mitsubishi	Melipc Mi5122-vw Melipc Mi5122-vw Firmware Melsec Iq-r R00 Cpu Melsec Iq-r R00 Cpu Firmware Melsec Iq-r R01 Cpu Melsec Iq-r R01 Cpu Firmware Melsec Iq-r R02 Cpu Melsec Iq-r R02 Cpu Firmware Melsec Iq-r R04 Cpu Melsec Iq-r R04 Cpu Firmware Melsec Iq-r R04 Pcpu Melsec Iq-r R04 Pcpu Firmware Melsec Iq-r R08 Cpu Melsec Iq-r R08 Cpu Firmware Melsec Iq-r R08 Pcpu Melsec Iq-r R08 Pcpu Firmware Melsec Iq-r R08 Sfcpu Melsec Iq-r R08 Sfcpu Firmware Melsec Iq-r R120 Cpu Melsec Iq-r R120 Cpu Firmware Melsec Iq-r R120 Pcpu Melsec Iq-r R120 Pcpu Firmware Melsec Iq-r R120 Sfcpu Melsec Iq-r R120 Sfcpu Firmware Melsec Iq-r R12 Ccpu-v Melsec Iq-r R12 Ccpu-v Firmware Melsec Iq-r R16 Cpu Melsec Iq-r R16 Cpu Firmware Melsec Iq-r R16 Mtcpu Melsec Iq-r R16 Mtcpu Firmware Melsec Iq-r R16 Pcpu Melsec Iq-r R16 Pcpu Firmware Melsec Iq-r R16 Sfcpu Melsec Iq-r R16 Sfcpu Firmware Melsec Iq-r R32 Cpu Melsec Iq-r R32 Cpu Firmware Melsec Iq-r R32 Mtcpu Melsec Iq-r R32 Mtcpu Firmware Melsec Iq-r R32 Pcpu Melsec Iq-r R32 Pcpu Firmware Melsec Iq-r R32 Sfcpu Melsec Iq-r R32 Sfcpu Firmware Melsec Iq-r R64 Mtcpu Melsec Iq-r R64 Mtcpu Firmware Melsec L02cpu\(-p\) Melsec L02cpu\(-p\) Firmware Melsec L06cpu\(-p\) Melsec L06cpu\(-p\) Firmware Melsec L26cpu-\(p\)bt Melsec L26cpu-\(p\)bt Firmware Melsec L26cpu\(-p\) Melsec L26cpu\(-p\) Firmware Melsec Mr-mq100 Melsec Mr-mq100 Firmware Melsec Q03udecpu Melsec Q03udecpu Firmware Melsec Q03udvcpu Melsec Q03udvcpu Firmware Melsec Q04udecpu Melsec Q04udecpu Firmware Melsec Q04udpvcpu Melsec Q04udpvcpu Firmware Melsec Q04udvcpu Melsec Q04udvcpu Firmware Melsec Q06udecpu Melsec Q06udecpu Firmware Melsec Q06udpvcpu Melsec Q06udpvcpu Firmware Melsec Q06udvcpu Melsec Q06udvcpu Firmware Melsec Q100udecpu Melsec Q100udecpu Firmware Melsec Q10udecpu Melsec Q10udecpu Firmware Melsec Q12dccpu-v Melsec Q12dccpu-v Firmware Melsec Q13udecpu Melsec Q13udecpu Firmware Melsec Q13udpvcpu Melsec Q13udpvcpu Firmware Melsec Q13udvcpu Melsec Q13udvcpu Firmware Melsec Q170mcpu Melsec Q170mcpu Firmware Melsec Q170mscpu\(-s1\) Melsec Q170mscpu\(-s1\) Firmware Melsec Q172dcpu-s1 Melsec Q172dcpu-s1 Firmware Melsec Q172dscpu Melsec Q172dscpu Firmware Melsec Q173dcpu-s1 Melsec Q173dcpu-s1 Firmware Melsec Q173dscpu Melsec Q173dscpu Firmware Melsec Q20udecpu Melsec Q20udecpu Firmware Melsec Q24dhccpu-ls Melsec Q24dhccpu-ls Firmware Melsec Q24dhccpu-v\(g\) Melsec Q24dhccpu-v\(g\) Firmware Melsec Q26dhccpu-ls Melsec Q26dhccpu-ls Firmware Melsec Q26udecpu Melsec Q26udecpu Firmware Melsec Q26udpvcpu Melsec Q26udpvcpu Firmware Melsec Q26udvcpu Melsec Q26udvcpu Firmware Melsec Q50udecpu Melsec Q50udecpu Firmware

Configuration 1 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r00_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r00_cpu:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r01_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r01_cpu:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r02_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r02_cpu:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r04_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r04_cpu:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r08_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r08_cpu:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r120_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r120_cpu:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r16_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r16_cpu:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r32_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r32_cpu:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r04_pcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r04_pcpu:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r08_pcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r08_pcpu:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r16_pcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r16_pcpu:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r32_pcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r32_pcpu:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r120_pcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r120_pcpu:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r08_sfcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r08_sfcpu:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r16_sfcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r16_sfcpu:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r32_sfcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r32_sfcpu:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r120_sfcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r120_sfcpu:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r16_mtcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r16_mtcpu:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r32_mtcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r32_mtcpu:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r64_mtcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r64_mtcpu:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r12_ccpu-v_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r12_ccpu-v:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q03udecpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q03udecpu:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q04udecpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q04udecpu:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q06udecpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q06udecpu:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q10udecpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q10udecpu:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q13udecpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q13udecpu:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q20udecpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q20udecpu:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q26udecpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q26udecpu:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q50udecpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q50udecpu:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q100udecpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q100udecpu:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q03udvcpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q03udvcpu:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q04udvcpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q04udvcpu:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q06udvcpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q06udvcpu:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q13udvcpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q13udvcpu:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q26udvcpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q26udvcpu:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q04udpvcpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q04udpvcpu:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q06udpvcpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q06udpvcpu:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q13udpvcpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q13udpvcpu:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q26udpvcpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q26udpvcpu:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q12dccpu-v_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q12dccpu-v:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q24dhccpu-v\(g\)_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q24dhccpu-v\(g\):-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q24dhccpu-ls_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q24dhccpu-ls:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q26dhccpu-ls_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q26dhccpu-ls:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:mitsubishi:melsec_mr-mq100_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_mr-mq100:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q172dcpu-s1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q172dcpu-s1:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q173dcpu-s1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q173dcpu-s1:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q172dscpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q172dscpu:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q173dscpu_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q173dscpu:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q170mscpu\(-s1\)_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q170mscpu\(-s1\):-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:mitsubishi:melsec_q170mcpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_q170mcpu:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:mitsubishi:melipc_mi5122-vw_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melipc_mi5122-vw:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:mitsubishi:melsec_l26cpu-\(p\)bt_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_l26cpu-\(p\)bt:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:mitsubishi:melsec_l26cpu\(-p\)_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_l26cpu\(-p\):-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:mitsubishi:melsec_l06cpu\(-p\)_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_l06cpu\(-p\):-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:mitsubishi:melsec_l02cpu\(-p\)_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_l02cpu\(-p\):-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r08_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r08_cpu:*:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r16_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r16_cpu:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r32_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r32_cpu:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:mitsubishi:melsec_iq-r_r120_cpu_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:mitsubishi:melsec_iq-r_r120_cpu:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://jvn.jp/vu/JVNVU94434051/index.html
https://us-cert.cisa.gov/ics/advisories/icsa-21-334-02
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf

History

No history.

MITRE

Status: PUBLISHED

Assigner: Mitsubishi

Published: 2021-12-01T15:41:20

Updated: 2024-08-03T17:45:44.852Z

Reserved: 2020-12-17T00:00:00

Link: CVE-2021-20609

Vulnrichment

No data.

NVD

Status : Modified

Published: 2021-12-01T16:15:07.467

Modified: 2023-11-09T09:15:07.430

Link: CVE-2021-20609

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object