{"uuid": "21b74044-2975-470a-97f9-a613e4558248", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-20597", "type": "seen", "source": "https://t.me/arpsyndicate/2658", "content": "#ExploitObserverAlert\n\nCVE-2021-20597\n\nDESCRIPTION: Exploit Observer has 4 entries related to CVE-2021-20597. Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions \"26\" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU all versions allows a remote unauthenticated attacker to login to the target unauthorizedly by sniffing network traffic and obtaining credentials when registering user information in the target or changing a password.\n\nFIRST-EPSS: 0.003190000\nNVD-IS: 5.2\nNVD-ES: 3.9", "creation_timestamp": "2024-01-08T16:40:39.000000Z"}