Mitsubishi Electric MELSEC iQ-R Series (Update A) (ICSA-20-282-02)

October 29, 2020

CISA has updated this advisory with additional information on the affected products and mitigation measures. Read the advisory at CISA.

October 8, 2020

CISA has published an advisory on an uncontrolled resource consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series. Multiple products and versions of these products are affected. Successful exploitation of this vulnerability could result in a denial-of-service condition due to uncontrolled resource consumption. Mitsubishi Electric plans to release a patch during the coming months, and CISA’s advisory will be updated with the patch information once available. In the meantime, Mitsubishi Electric recommends users take a series of mitigation measures to minimize the risk of exploiting this vulnerability. CISA also recommends a series of measures to mitigate this vulnerability. Read the advisory at CISA.