{
  "schema_version": "1.4.0",
  "id": "GHSA-c9mw-29g5-hf3h",
  "modified": "2022-07-13T00:01:05Z",
  "published": "2022-05-24T17:40:35Z",
  "aliases": [
    "CVE-2021-20586"
  ],
  "details": "Resource management errors vulnerability in a robot controller of MELFA FR Series(controller \"CR800-*V*D\" of RV-*FR***-D-* all versions, controller \"CR800-*HD\" of RH-*FRH***-D-* all versions, controller \"CR800-*HRD\" of RH-*FRHR***-D-* all versions, controller \"CR800-*V*R with R16RTCPU\" of RV-*FR***-R-* all versions, controller \"CR800-*HR with R16RTCPU\" of RH-*FRH***-R-* all versions, controller \"CR800-*HRR with R16RTCPU\" of RH-*FRHR***-R-* all versions, controller \"CR800-*V*Q with Q172DSRCPU\" of RV-*FR***-Q-* all versions, controller \"CR800-*HQ with Q172DSRCPU\" of RH-*FRH***-Q-* all versions, controller \"CR800-*HRQ with Q172DSRCPU\" of RH-*FRHR***-Q-* all versions) and a robot controller of MELFA CR Series(controller \"CR800-CVD\" of RV-8CRL-D-* all versions, controller \"CR800-CHD\" of RH-*CRH**-D-* all versions) as well as a cooperative robot ASSISTA(controller \"CR800-05VD\" of RV-5AS-D-* all versions) allows a remote unauthenticated attacker to cause a DoS of the execution of the robot program and the Ethernet communication by sending a large amount of packets in burst over a short period of time. As a result of DoS, an error may occur. A reset is required to recover it if the error occurs.",
  "severity": [
    {
      "type": "CVSS_V3",
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
    }
  ],
  "affected": [],
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20586"
    },
    {
      "type": "WEB",
      "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2020-019_en.pdf"
    }
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-400"
    ],
    "severity": "HIGH",
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-01-29T15:15:00Z"
  }
}