Skip to main content

R120Sfcpu Firmware

7 CVEs product

Monthly

CVE-2021-20599 HIGH This Week

Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure R08Sfcpu Firmware R16Sfcpu Firmware R32Sfcpu Firmware R120Sfcpu Firmware +4
NVD
CVSS 3.1
7.5
EPSS
1.3%
CVE-2021-20598 MEDIUM This Month

Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R08/16/32/120SFCPU all versions, R08/16/32/120PSFCPU all versions) allows a remote. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass R08Sfcpu Firmware R16Sfcpu Firmware R32Sfcpu Firmware R120Sfcpu Firmware +4
NVD
CVSS 3.1
5.3
EPSS
1.5%
CVE-2021-20597 CRITICAL Act Now

Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass R08Sfcpu Firmware R16Sfcpu Firmware R32Sfcpu Firmware R120Sfcpu Firmware +4
NVD
CVSS 3.1
9.1
EPSS
2.2%
CVE-2021-20594 HIGH This Week

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure R08Sfcpu Firmware R16Sfcpu Firmware R32Sfcpu Firmware R120Sfcpu Firmware +4
NVD
CVSS 3.1
7.5
EPSS
2.4%
CVE-2021-20591 HIGH This Week

Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R00/01/02CPU all versions, R04/08/16/32/120(EN)CPU all versions, R08/16/32/120SFCPU all. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service R00Cpu Firmware R01Cpu Firmware R02Cpu Firmware R04Cpu Firmware +16
NVD
CVSS 3.1
7.5
EPSS
1.5%
CVE-2020-16850 HIGH This Week

Mitsubishi MELSEC iQ-R Series PLCs with firmware 49 allow an unauthenticated attacker to halt the industrial process by sending a crafted packet over the network. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service R00Cpu Firmware R01Cpu Firmware R02Cpu Firmware R04Cpu Firmware +15
NVD
CVSS 3.1
7.5
EPSS
2.1%
CVE-2020-5668 HIGH This Week

Uncontrolled resource consumption vulnerability in MELSEC iQ-R Series modules (R00/01/02CPU firmware version '19' and earlier, R04/08/16/32/120 (EN) CPU firmware version '51' and earlier,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service R00Cpu Firmware R01Cpu Firmware R02Cpu Firmware R04Cpu Firmware +24
NVD
CVSS 3.1
7.5
EPSS
4.7%
EPSS 1% CVSS 7.5
HIGH This Week

Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure R08Sfcpu Firmware R16Sfcpu Firmware +6
NVD
EPSS 2% CVSS 5.3
MEDIUM This Month

Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R08/16/32/120SFCPU all versions, R08/16/32/120PSFCPU all versions) allows a remote. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass R08Sfcpu Firmware R16Sfcpu Firmware +6
NVD
EPSS 2% CVSS 9.1
CRITICAL Act Now

Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass R08Sfcpu Firmware R16Sfcpu Firmware +6
NVD
EPSS 2% CVSS 7.5
HIGH This Week

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure R08Sfcpu Firmware R16Sfcpu Firmware +6
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R00/01/02CPU all versions, R04/08/16/32/120(EN)CPU all versions, R08/16/32/120SFCPU all. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service R00Cpu Firmware R01Cpu Firmware +18
NVD
EPSS 2% CVSS 7.5
HIGH This Week

Mitsubishi MELSEC iQ-R Series PLCs with firmware 49 allow an unauthenticated attacker to halt the industrial process by sending a crafted packet over the network. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service R00Cpu Firmware R01Cpu Firmware +17
NVD
EPSS 5% CVSS 7.5
HIGH This Week

Uncontrolled resource consumption vulnerability in MELSEC iQ-R Series modules (R00/01/02CPU firmware version '19' and earlier, R04/08/16/32/120 (EN) CPU firmware version '51' and earlier,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service R00Cpu Firmware R01Cpu Firmware +26
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy