CVE-2020-5675
First published: Fri Dec 04 2020(Updated: )
Out-of-bounds read vulnerability in GT21 model of GOT2000 series (GT2107-WTBD V01.39.000 and earlier, GT2107-WTSD V01.39.000 and earlier, GT2104-RTBD V01.39.000 and earlier, GT2104-PMBD V01.39.000 and earlier, and GT2103-PMBD V01.39.000 and earlier), GS21 model of GOT series (GS2110-WTBD V01.39.000 and earlier, GS2107-WTBD V01.39.000 and earlier, GS2110-WTBD-N V01.39.000 and earlier, and GS2107-WTBD-N V01.39.000 and earlier), and Tension Controller LE7-40GU-L series (LE7-40GU-L Screen package data for CC-Link IEF Basic V1.00, LE7-40GU-L Screen package data for MODBUS/TCP V1.00, and LE7-40GU-L Screen package data for SLMP V1.00) allows a remote attacker to cause a denial-of-service (DoS) condition by sending a specially crafted packet. As a result, deterioration of communication performance or a denial-of-service (DoS) condition of the TCP communication functions of the products may occur.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mitsubishi Electric GT2107-WTBD Firmware | <=01.39.000 | |
| Mitsubishi Electric GT2107-WTBD Firmware | ||
| Mitsubishi Electric GT2107-WTSD | <=01.39.000 | |
| Mitsubishielectric Gt2107-wtsd Firmware | ||
| Mitsubishi Electric GT2104-RTBD Firmware | <=01.39.000 | |
| Mitsubishi Electric GT2104-RTBD Firmware | ||
| Mitsubishi Electric GT2104-PMBD Firmware | <=01.39.000 | |
| Mitsubishi Electric GT2104-PMBD Firmware | ||
| Mitsubishi Electric GOT2000 GT2103-PMBD Firmware | <=01.39.000 | |
| Mitsubishi Electric GOT2000 GT2103-PMBD | ||
| Mitsubishi Electric GS2110-WTBD Firmware | <=01.39.000 | |
| Mitsubishi Electric GS2110-WTBD Firmware | ||
| Mitsubishi Electric GS2107-WTBD Firmware | <=01.39.000 | |
| Mitsubishi Electric GS2107-WTBD | ||
| Mitsubishi Electric LE7-40GU-L Firmware | =1.00 | |
| Mitsubishi Electric LE7-40GU-L Firmware | ||
| Mitsubishi Electric GS2110-WTBD | <=01.39.000 | |
| Mitsubishi Electric GS2110-WTBD-N | ||
| Mitsubishi Electric GS2107-WTBD-N Firmware | <=01.39.000 | |
| Mitsubishi Electric GS2107-WTBD-N Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-5675?
CVE-2020-5675 is classified as a medium severity vulnerability due to its potential to allow unauthorized access to sensitive information.
How do I fix CVE-2020-5675?
To mitigate CVE-2020-5675, users should update their firmware to the latest version provided by Mitsubishi Electric.
Which devices are affected by CVE-2020-5675?
CVE-2020-5675 affects several models in the GOT2000 and GS series, including GT2107-WTBD, GT2107-WTSD, and GS2110-WTBD with firmware versions up to 01.39.000.
What type of vulnerability is CVE-2020-5675?
CVE-2020-5675 is an out-of-bounds read vulnerability, which can lead to information leakage.
Is there a known exploit for CVE-2020-5675?
As of now, there are no publicly available exploits specifically targeting CVE-2020-5675.
- agent/references
- agent/type
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/mitsubishielectric
- canonical/mitsubishi electric gt2107-wtbd firmware
- version/mitsubishi electric gt2107-wtbd firmware/01.39.000
- canonical/mitsubishi electric gt2107-wtsd
- version/mitsubishi electric gt2107-wtsd/01.39.000
- canonical/mitsubishielectric gt2107-wtsd firmware
- canonical/mitsubishi electric gt2104-rtbd firmware
- version/mitsubishi electric gt2104-rtbd firmware/01.39.000
- canonical/mitsubishi electric gt2104-pmbd firmware
- version/mitsubishi electric gt2104-pmbd firmware/01.39.000
- canonical/mitsubishi electric got2000 gt2103-pmbd firmware
- version/mitsubishi electric got2000 gt2103-pmbd firmware/01.39.000
- canonical/mitsubishi electric got2000 gt2103-pmbd
- canonical/mitsubishi electric gs2110-wtbd firmware
- version/mitsubishi electric gs2110-wtbd firmware/01.39.000
- canonical/mitsubishi electric gs2107-wtbd firmware
- version/mitsubishi electric gs2107-wtbd firmware/01.39.000
- canonical/mitsubishi electric gs2107-wtbd
- canonical/mitsubishi electric le7-40gu-l firmware
- version/mitsubishi electric le7-40gu-l firmware/1.00
- canonical/mitsubishi electric gs2110-wtbd
- version/mitsubishi electric gs2110-wtbd/01.39.000
- canonical/mitsubishi electric gs2110-wtbd-n
- canonical/mitsubishi electric gs2107-wtbd-n firmware
- version/mitsubishi electric gs2107-wtbd-n firmware/01.39.000