Rewterz Threat Advisory – ICS: Mitsubishi Electric GOT and Tension Controller
October 6, 2021Rewterz Threat Advisory – ICS: Moxa MXview Network Management Software
October 6, 2021Rewterz Threat Advisory – ICS: Mitsubishi Electric GOT and Tension Controller
October 6, 2021Rewterz Threat Advisory – ICS: Moxa MXview Network Management Software
October 6, 2021Severity
High
Analysis Summary
CVE-2021-20602
An attacker could send specially crafted packets cause to cause several different denial-of-service conditions due to the improper handling of exceptional conditions.
CVE-2021-20603 ; CVE-2021-20605 ; CVE-2021-20604
An attacker could send specially crafted packets cause to cause several different denial-of-service conditions in the TCP-IP protocol stack of GOT and Tension Controller.
Impact
- Code Execution
- Denial of Service
Affected Vendors
- Mitsubishi Electric
Affected Products
- GT2107-WTBD: All versions
- GT2107-WTSD: All versions
- GT2104-RTBD: All versions
- GT2104-PMBD: All versions
- GT2103-PMBD: All versions
- GS2110-WTBD: All versions
- GS2107-WTBD: All versions
- GS2110-WTBD-N: All versions
- GS2107-WTBD-N: All versions
Remediation
Refer to US-CERT Advisory for patch, upgrade, or suggested workaround information.