cbcvebase.
CVE-2020-12011
published 2020-07-16

CVE-2020-12011: A specially crafted communication packet sent to the affected systems could cause a denial-of-service condition or allow remote code execution. This issue…

PriorityP272critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
29.19%
97.9th percentile
A specially crafted communication packet sent to the affected systems could cause a denial-of-service condition or allow remote code execution. This issue affects: Mitsubishi Electric MC Works64 version 4.02C (10.95.208.31) and earlier, all versions; MC Works32 version 3.00A (9.50.255.02); ICONICS GenBroker64, Platform Services, Workbench, FrameWorX Server version 10.96 and prior; GenBroker32 version 9.5 and prior.

Affected

3 ranges
VendorProductVersion rangeFixed in
mitsubishielectricmc_works<= 10.95.208.31
mitsubishielectricmc_works32
mitsubishielectricmc_works32

Detection & IOCsextracted from sources · hover to see the quote

  • Target the GenBroker64 or GenBroker32 communication service — a specially crafted packet to these components triggers the out-of-bounds write (CVE-2020-12011); monitor for anomalous/malformed inbound packets to these broker services.
  • Monitor for anomalous/malformed inbound packets to MC Works64 Broker64 or MC Works32 Broker32 services, which are the specific targeted components for CVE-2020-12011.
  • High skill level is required to exploit; prioritize monitoring for targeted, low-volume, crafted packet activity rather than broad scanning noise.
  • ·CVE-2020-12011 is an Out-of-Bounds Write (CWE-787) with CVSS v3 score 8.1 (AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H) — the high attack complexity (AC:H) means exploitation is not trivial and requires specific conditions to be met.
  • ·Affected versions for ICONICS: GenBroker64, Platform Services, Workbench, FrameWorX Server v10.96 and prior; GenBroker32 v9.5 and prior. Affected versions for Mitsubishi Electric: MC Works64 v4.02C (10.95.208.31) and earlier; MC Works32 v3.00A (9.50.255.02).

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.