Rewterz Threat Alert – Quasar RAT – Active IOCs
July 28, 2021Rewterz Threat Advisory –CVE-2021-20560 – IBM Sterling Connect Security Vulnerability
July 28, 2021Rewterz Threat Alert – Quasar RAT – Active IOCs
July 28, 2021Rewterz Threat Advisory –CVE-2021-20560 – IBM Sterling Connect Security Vulnerability
July 28, 2021Severity
Medium
Analysis Summary
CVE-2021-20592
Mitsubishi Electric GOT2000 series and GT SoftGOT2000 are vulnerable to a denial of service, caused by missing synchronization. By rapidly and repeatedly connecting and disconnecting to and from the MODBUS/TCP communication port on GOT, a remote attacker could exploit this vulnerability to cause a denial of service condition.
Impact
- Denial of Service
Affected Vendors
Mitsubishi Electric
Affected Products
- Mitsubishi Electric GOT2000 series GT27 model 01.19.000
- Mitsubishi Electric GOT2000 series GT27 model 01.38.000
- Mitsubishi Electric GOT2000 series GT25 model 01.19.000
- Mitsubishi Electric GOT2000 series GT25 model 01.38.000
- Mitsubishi Electric GOT2000 series GT23 model 01.19.000
- Mitsubishi Electric GOT2000 series GT23 model 01.38.000
Remediation
Refer to the following website for updates, patches, and workarounds at https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-007_en.pdf