CVE-2019-13555
Severity Score
5.9
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
In Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior, MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior, a remote attacker can cause the FTP service to enter a denial-of-service condition dependent on the timing at which a remote attacker connects to the FTP server on the above CPU modules.
En Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: número de serie 21081 y anterior, Q04/06/13/26UDPVCPU: número de serie 21081 y anterior, y Q04/06/10/13/20/26/50/100UDEHCPU: número de serie 21081 y anterior, MELSEC-L Series L02/06/26CPU, L26CPU-BT: número de serie 21101 y anterior, L02/06/26CPU-P, L26CPU-PBT: número de serie 21101 y anterior, y L02/06/26CPU-CM, L26CPU-BT-CM: número de serie 21101 y anterior, un atacante remoto puede causar que el servicio FTP ingrese en una condición de denegación de servicio dependiendo de la sincronización en la que un atacante remoto conecta con el Servidor FTP en los módulos de CPU anteriores.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2019-07-11 CVE Reserved
- 2019-11-13 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-400: Uncontrolled Resource Consumption
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://www.us-cert.gov/ics/advisories/icsa-19-311-01 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Mitsubishielectric Search vendor "Mitsubishielectric" | Q03\/04\/06\/13\/26udvcpu Firmware Search vendor "Mitsubishielectric" for product "Q03\/04\/06\/13\/26udvcpu Firmware" | <= 21081 Search vendor "Mitsubishielectric" for product "Q03\/04\/06\/13\/26udvcpu Firmware" and version " <= 21081" | - |
Affected
| in | Mitsubishielectric Search vendor "Mitsubishielectric" | Q03\/04\/06\/13\/26udvcpu Search vendor "Mitsubishielectric" for product "Q03\/04\/06\/13\/26udvcpu" | - | - |
Safe
|
| Mitsubishielectric Search vendor "Mitsubishielectric" | Q04\/06\/13\/26udpvcpu Firmware Search vendor "Mitsubishielectric" for product "Q04\/06\/13\/26udpvcpu Firmware" | <= 21081 Search vendor "Mitsubishielectric" for product "Q04\/06\/13\/26udpvcpu Firmware" and version " <= 21081" | - |
Affected
| in | Mitsubishielectric Search vendor "Mitsubishielectric" | Q04\/06\/13\/26udpvcpu Search vendor "Mitsubishielectric" for product "Q04\/06\/13\/26udpvcpu" | - | - |
Safe
|
| Mitsubishielectric Search vendor "Mitsubishielectric" | Q03udecpu Firmware Search vendor "Mitsubishielectric" for product "Q03udecpu Firmware" | <= 21081 Search vendor "Mitsubishielectric" for product "Q03udecpu Firmware" and version " <= 21081" | - |
Affected
| in | Mitsubishielectric Search vendor "Mitsubishielectric" | Q03udecpu Search vendor "Mitsubishielectric" for product "Q03udecpu" | - | - |
Safe
|
| Mitsubishielectric Search vendor "Mitsubishielectric" | Q04\/06\/10\/13\/20\/26\/50\/100udehcpu Firmware Search vendor "Mitsubishielectric" for product "Q04\/06\/10\/13\/20\/26\/50\/100udehcpu Firmware" | <= 21081 Search vendor "Mitsubishielectric" for product "Q04\/06\/10\/13\/20\/26\/50\/100udehcpu Firmware" and version " <= 21081" | - |
Affected
| in | Mitsubishielectric Search vendor "Mitsubishielectric" | Q04\/06\/10\/13\/20\/26\/50\/100udehcpu Search vendor "Mitsubishielectric" for product "Q04\/06\/10\/13\/20\/26\/50\/100udehcpu" | - | - |
Safe
|
| Mitsubishielectric Search vendor "Mitsubishielectric" | L02\/06\/26cpu Firmware Search vendor "Mitsubishielectric" for product "L02\/06\/26cpu Firmware" | <= 21101 Search vendor "Mitsubishielectric" for product "L02\/06\/26cpu Firmware" and version " <= 21101" | - |
Affected
| in | Mitsubishielectric Search vendor "Mitsubishielectric" | L02\/06\/26cpu Search vendor "Mitsubishielectric" for product "L02\/06\/26cpu" | - | - |
Safe
|
| Mitsubishielectric Search vendor "Mitsubishielectric" | L26cpu-bt Firmware Search vendor "Mitsubishielectric" for product "L26cpu-bt Firmware" | <= 21101 Search vendor "Mitsubishielectric" for product "L26cpu-bt Firmware" and version " <= 21101" | - |
Affected
| in | Mitsubishielectric Search vendor "Mitsubishielectric" | L26cpu-bt Search vendor "Mitsubishielectric" for product "L26cpu-bt" | - | - |
Safe
|
| Mitsubishielectric Search vendor "Mitsubishielectric" | L02\/06\/26cpu-p Firmware Search vendor "Mitsubishielectric" for product "L02\/06\/26cpu-p Firmware" | <= 21101 Search vendor "Mitsubishielectric" for product "L02\/06\/26cpu-p Firmware" and version " <= 21101" | - |
Affected
| in | Mitsubishielectric Search vendor "Mitsubishielectric" | L02\/06\/26cpu-p Search vendor "Mitsubishielectric" for product "L02\/06\/26cpu-p" | - | - |
Safe
|
| Mitsubishielectric Search vendor "Mitsubishielectric" | L26cpu-pbt Firmware Search vendor "Mitsubishielectric" for product "L26cpu-pbt Firmware" | <= 21101 Search vendor "Mitsubishielectric" for product "L26cpu-pbt Firmware" and version " <= 21101" | - |
Affected
| in | Mitsubishielectric Search vendor "Mitsubishielectric" | L26cpu-pbt Search vendor "Mitsubishielectric" for product "L26cpu-pbt" | - | - |
Safe
|
| Mitsubishielectric Search vendor "Mitsubishielectric" | L02\/06\/26cpu-cm Firmware Search vendor "Mitsubishielectric" for product "L02\/06\/26cpu-cm Firmware" | <= 21101 Search vendor "Mitsubishielectric" for product "L02\/06\/26cpu-cm Firmware" and version " <= 21101" | - |
Affected
| in | Mitsubishielectric Search vendor "Mitsubishielectric" | L02\/06\/26cpu-cm Search vendor "Mitsubishielectric" for product "L02\/06\/26cpu-cm" | - | - |
Safe
|
| Mitsubishielectric Search vendor "Mitsubishielectric" | L26cpu-bt-cm Firmware Search vendor "Mitsubishielectric" for product "L26cpu-bt-cm Firmware" | <= 21101 Search vendor "Mitsubishielectric" for product "L26cpu-bt-cm Firmware" and version " <= 21101" | - |
Affected
| in | Mitsubishielectric Search vendor "Mitsubishielectric" | L26cpu-bt-cm Search vendor "Mitsubishielectric" for product "L26cpu-bt-cm" | - | - |
Safe
|