Detections
Analytics
Mitsubishi MELSEC-Q Ethernet Interface Modules Denial of Service
high Nessus Network Monitor Plugin ID 720089
Synopsis
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules which may allow a remote attacker to connect to the PLC via Port 5002/TCP and cause a denial of service.Description
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. The affected Ethernet interface module is connected to a MELSEC-Q PLC, which may allow a remote attacker to connect to the PLC via Port 5002/TCP and cause a denial of service, requiring the PLC to be reset to resume operation. This is caused by an Unrestricted Externally Accessible Lock.Solution
Perform vendor recommended mitigations and apply available vendor upgrades.See Also
http://www.securityfocus.com/bid/94632,https://ics-cert.us-cert.gov/advisories/ICSA-16-336-03
Plugin Details
Severity: High
ID: 720089
Family: SCADA
Published: 5/8/2019
Updated: 9/30/2019
Risk Information
VPR
Risk Factor: Medium
Score: 4.4
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS v3
Risk Factor: High
Base Score: 8.6
Temporal Score: 7.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
Patch Publication Date: 12/1/2016
Vulnerability Publication Date: 12/1/2016
Reference Information
CVE: CVE-2016-8368
BID: 94632