Published: 22/04/2021 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Improper authentication vulnerability in GOT2000 series GT27 model VNC server versions 01.39.010 and prior, GOT2000 series GT25 model VNC server versions 01.39.010 and prior, GOT2000 series GT21 model GT2107-WTBD VNC server versions 01.40.000 and prior, GOT2000 series GT21 model GT2107-WTSD VNC server versions 01.40.000 and prior, GOT SIMPLE series GS21 model GS2110-WTBD-N VNC server versions 01.40.000 and prior and GOT SIMPLE series GS21 model GS2107-WTBD-N VNC server versions 01.40.000 and prior allows a remote unauthenticated malicious user to gain unauthorized access via specially crafted packets when the "VNC server" function is used.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mitsubishielectric got2000_gt27_firmware
mitsubishielectric got2000_gt25_firmware
mitsubishielectric gt2107-wtbd_firmware
mitsubishielectric gt2107-wtsd_firmware
mitsubishielectric gs2110-wtbd-n_firmware
mitsubishielectric gs2107-wtbd-n_firmware

CWE-287 https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-001_en.pdf https://jvn.jp/vu/JVNVU97615777/index.html https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-20590

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect