Rewterz Threat Advisory – ICS: Johnson Controls exacqVision Server Bundle
October 8, 2021Rewterz Threat Advisory – ICS: FATEK Automation And WinProladder Communication Server
October 8, 2021Rewterz Threat Advisory – ICS: Johnson Controls exacqVision Server Bundle
October 8, 2021Rewterz Threat Advisory – ICS: FATEK Automation And WinProladder Communication Server
October 8, 2021Severity
High
Analysis Summary
CVE-2021-20600
The potential for a denial-of-service condition exists in MELSEC iQ-R series C Controller Module due to uncontrolled resource consumption caused by an attacker sending a large number of packets to the module at start-up in a short time.
Impact
- Denial of Service
Affected Vendors
Mitsubishi Electric
Affected Products
- R12CCPU-V: All versions
Remediation
Refer to US-CERT Advisory for patch, upgrade, or suggested workaround information.