All the vulnerabilites related to Mitsubishi Electric Corporation - MELSEC iQ-R Series R16CPU
cve-2023-0457
Vulnerability from cvelistv5
Published
2023-03-03 04:18
Modified
2024-08-02 05:10
Severity ?
EPSS score ?
Summary
Information Disclosure Vulnerability in MELSEC Series
References
Impacted products
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-02T05:10:56.351Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_transferred" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-023_en.pdf" }, { "tags": [ "x_transferred" ], "url": "https://jvn.jp/vu/JVNVU93891523/index.html" }, { "tags": [ "x_transferred" ], "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-061-01" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-64MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-96MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-64MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-96MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DSS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MR/DS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MR/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MR/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MR/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-30MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-40MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-60MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-80MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-30MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-40MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-60MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-80MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-30MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-40MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-60MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-80MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5-ENET", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5-ENET/IP", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R00CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R01CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series RJ71EN71", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R12CCPU-V", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q03UDECPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q04UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q06UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q10UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q13UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q20UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q26UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q50UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q100UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q03UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q04UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q06UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q13UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q26UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q04UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q06UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q13UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series Q26UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-Q Series QJ71E71-100", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-L Series L02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-L Series L06CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-L Series L26CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-L Series L02CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-L Series L06CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-L Series L26CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-L Series L26CPU-BT", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-L Series L26CPU-PBT", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC-L Series LJ71E71-100", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] } ], "descriptions": [ { "lang": "en", "supportingMedia": [ { "base64": false, "type": "text/html", "value": "Plaintext Storage of a Password vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series, MELSEC iQ-R Series, MELSEC-Q Series and MELSEC-L Series allows a remote unauthenticated attacker to disclose plaintext credentials stored in project files and login into FTP server or Web server." } ], "value": "Plaintext Storage of a Password vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series, MELSEC iQ-R Series, MELSEC-Q Series and MELSEC-L Series allows a remote unauthenticated attacker to disclose plaintext credentials stored in project files and login into FTP server or Web server." } ], "impacts": [ { "descriptions": [ { "lang": "en", "value": "Information disclosure" } ] } ], "metrics": [ { "cvssV3_1": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1" }, "format": "CVSS", "scenarios": [ { "lang": "en", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-256", "description": "CWE-256 Plaintext Storage of a Password", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2023-06-21T04:21:45.500Z", "orgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "shortName": "Mitsubishi" }, "references": [ { "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-023_en.pdf" }, { "url": "https://jvn.jp/vu/JVNVU93891523/index.html" }, { "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-061-01" } ], "source": { "discovery": "UNKNOWN" }, "title": "Information Disclosure Vulnerability in MELSEC Series", "x_generator": { "engine": "Vulnogram 0.1.0-dev" } } }, "cveMetadata": { "assignerOrgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "assignerShortName": "Mitsubishi", "cveId": "CVE-2023-0457", "datePublished": "2023-03-03T04:18:15.787Z", "dateReserved": "2023-01-24T08:55:21.468Z", "dateUpdated": "2024-08-02T05:10:56.351Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2022-33324
Vulnerability from cvelistv5
Published
2022-12-23 02:24
Modified
2024-09-05 05:25
Severity ?
EPSS score ?
Summary
Denial-of-Service Vulnerability in Ethernet port of MELSEC iQ-R, iQ-L Series and MELIPC Series
References
▼ | URL | Tags |
---|---|---|
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-018_en.pdf | vendor-advisory | |
https://jvn.jp/vu/JVNVU96883262 | government-resource | |
https://www.cisa.gov/uscert/ics/advisories/icsa-22-356-03 | government-resource |
Impacted products
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-03T08:09:21.336Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_transferred" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-018_en.pdf" }, { "tags": [ "x_transferred" ], "url": "https://jvn.jp/vu/JVNVU96883262" }, { "tags": [ "x_transferred" ], "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-356-03" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R00CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"32\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R01CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"32\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"32\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"65\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"65\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"65\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"65\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"65\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"65\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"65\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"65\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"65\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"65\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R12CCPU-V", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"17\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-L Series L04HCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"05\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-L Series L08HCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"05\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-L Series L16HCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"05\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-L Series L32HCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"05\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELIPC Series MI5122-VW", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"07\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] } ], "descriptions": [ { "lang": "en", "supportingMedia": [ { "base64": false, "type": "text/html", "value": "Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU Firmware versions \"32\" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU Firmware versions \"65\" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R08/16/32/120SFCPU Firmware versions \"29\" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R08/16/32/120PSFCPU Firmware versions \"08\" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R12CCPU-V Firmware versions \"17\" and prior, Mitsubishi Electric Corporation MELSEC iQ-L Series L04/08/16/32HCPU Firmware versions \"05\" and prior and Mitsubishi Electric Corporation MELIPC Series MI5122-VW Firmware versions \"07\" and prior allows a remote unauthenticated attacker to cause a Denial of Service condition in Ethernet communication on the module by sending specially crafted packets. A system reset of the module is required for recovery." } ], "value": "Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU Firmware versions \"32\" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU Firmware versions \"65\" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R08/16/32/120SFCPU Firmware versions \"29\" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R08/16/32/120PSFCPU Firmware versions \"08\" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R12CCPU-V Firmware versions \"17\" and prior, Mitsubishi Electric Corporation MELSEC iQ-L Series L04/08/16/32HCPU Firmware versions \"05\" and prior and Mitsubishi Electric Corporation MELIPC Series MI5122-VW Firmware versions \"07\" and prior allows a remote unauthenticated attacker to cause a Denial of Service condition in Ethernet communication on the module by sending specially crafted packets. A system reset of the module is required for recovery." } ], "impacts": [ { "descriptions": [ { "lang": "en", "value": "Denial of Service" } ] } ], "metrics": [ { "cvssV3_1": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "format": "CVSS", "scenarios": [ { "lang": "en", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-404", "description": "CWE-404 Improper Resource Shutdown or Release", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2024-09-05T05:25:44.061Z", "orgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "shortName": "Mitsubishi" }, "references": [ { "tags": [ "vendor-advisory" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-018_en.pdf" }, { "tags": [ "government-resource" ], "url": "https://jvn.jp/vu/JVNVU96883262" }, { "tags": [ "government-resource" ], "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-356-03" } ], "source": { "discovery": "UNKNOWN" }, "title": "Denial-of-Service Vulnerability in Ethernet port of MELSEC iQ-R, iQ-L Series and MELIPC Series", "x_generator": { "engine": "Vulnogram 0.1.0-dev" } } }, "cveMetadata": { "assignerOrgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "assignerShortName": "Mitsubishi", "cveId": "CVE-2022-33324", "datePublished": "2022-12-23T02:24:15.274Z", "dateReserved": "2022-06-14T17:50:53.644Z", "dateUpdated": "2024-09-05T05:25:44.061Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2023-1424
Vulnerability from cvelistv5
Published
2023-05-24 04:39
Modified
2024-08-02 05:49
Severity ?
EPSS score ?
Summary
Denial-of-Service and Remote Code Execution Vulnerability in MELSEC Series CPU module
References
Impacted products
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-02T05:49:11.688Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1727" }, { "tags": [ "x_transferred" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-003_en.pdf" }, { "tags": [ "x_transferred" ], "url": "https://jvn.jp/vu/JVNVU94650413" }, { "tags": [ "x_transferred" ], "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-143-03" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-64MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-96MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-64MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-96MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Serial number 17X**** or later, versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DSS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MR/DS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 1.220 to 1.281" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R00CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R01CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 12 to 68" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 12 to 68" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 12 to 68" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 12 to 68" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 12 to 68" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 12 to 68" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 12 to 68" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 12 to 68" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 12 to 68" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 12 to 68" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 26 to 31" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 26 to 31" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 26 to 31" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 26 to 31" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 3 to 37" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 3 to 37" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 3 to 37" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions from 3 to 37" } ] } ], "descriptions": [ { "lang": "en", "supportingMedia": [ { "base64": false, "type": "text/html", "value": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules and MELSEC iQ-R Series CPU modules allows a remote unauthenticated attacker to cause a denial of service (DoS) condition or execute malicious code on a target product by sending specially crafted packets. A system reset of the product is required for recovery from a denial of service (DoS) condition and malicious code execution." } ], "value": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules and MELSEC iQ-R Series CPU modules allows a remote unauthenticated attacker to cause a denial of service (DoS) condition or execute malicious code on a target product by sending specially crafted packets. A system reset of the product is required for recovery from a denial of service (DoS) condition and malicious code execution." } ], "impacts": [ { "descriptions": [ { "lang": "en", "value": "Denial-of-Service and Remote Code Execution" } ] } ], "metrics": [ { "cvssV3_1": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 10, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "format": "CVSS", "scenarios": [ { "lang": "en", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-120", "description": "CWE-120 Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2024-03-14T09:05:52.848Z", "orgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "shortName": "Mitsubishi" }, "references": [ { "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-003_en.pdf" }, { "url": "https://jvn.jp/vu/JVNVU94650413" }, { "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-143-03" } ], "source": { "discovery": "UNKNOWN" }, "title": "Denial-of-Service and Remote Code Execution Vulnerability in MELSEC Series CPU module", "x_generator": { "engine": "Vulnogram 0.1.0-dev" } } }, "cveMetadata": { "assignerOrgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "assignerShortName": "Mitsubishi", "cveId": "CVE-2023-1424", "datePublished": "2023-05-24T04:39:25.040Z", "dateReserved": "2023-03-16T02:10:25.722Z", "dateUpdated": "2024-08-02T05:49:11.688Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2021-20610
Vulnerability from cvelistv5
Published
2021-12-01 15:41
Modified
2024-08-03 17:45
Severity ?
EPSS score ?
Summary
Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery.
References
▼ | URL | Tags |
---|---|---|
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf | vendor-advisory | |
https://jvn.jp/vu/JVNVU94434051/index.html | government-resource | |
https://us-cert.cisa.gov/ics/advisories/icsa-21-334-02 | government-resource |
Impacted products
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-03T17:45:44.828Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "vendor-advisory", "x_transferred" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf" }, { "tags": [ "government-resource", "x_transferred" ], "url": "https://jvn.jp/vu/JVNVU94434051/index.html" }, { "tags": [ "government-resource", "x_transferred" ], "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-334-02" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R00CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"24\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R01CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"24\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"24\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16MTCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"23\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32MTCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"23\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R64MTCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"23\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R12CCPU-V", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"16\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q03UDECPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q04UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q06UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q10UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q13UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q20UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q50UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q100UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q03UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q04UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q06UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q13UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q04UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q06UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q13UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q12DCCPU-V", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q24DHCCPU-V ", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q24DHCCPU-VG", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q24DHCCPU-LS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26DHCCPU-LS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series MR-MQ100", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"F\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q172DCPU-S1", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"W\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q173DCPU-S1", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"W\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q172DSCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q173DSCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q170MCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"W\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q170MSCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q170MSCPU-S1", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L06CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L02CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L06CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU-BT", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU-PBT", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELIPC Series MI5122-VW", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"05\" and prior" } ] } ], "descriptions": [ { "lang": "en", "supportingMedia": [ { "base64": false, "type": "text/html", "value": "Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery." } ], "value": "Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery." } ], "impacts": [ { "descriptions": [ { "lang": "en", "value": "Denial of Service" } ] } ], "metrics": [ { "cvssV3_1": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "format": "CVSS", "scenarios": [ { "lang": "en", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-130", "description": "CWE-130 Improper Handling of Length Parameter Inconsistency", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2023-11-09T08:23:03.802Z", "orgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "shortName": "Mitsubishi" }, "references": [ { "tags": [ "vendor-advisory" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf" }, { "tags": [ "government-resource" ], "url": "https://jvn.jp/vu/JVNVU94434051/index.html" }, { "tags": [ "government-resource" ], "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-334-02" } ], "source": { "discovery": "UNKNOWN" }, "x_generator": { "engine": "Vulnogram 0.1.0-dev" } } }, "cveMetadata": { "assignerOrgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "assignerShortName": "Mitsubishi", "cveId": "CVE-2021-20610", "datePublished": "2021-12-01T15:41:25", "dateReserved": "2020-12-17T00:00:00", "dateUpdated": "2024-08-03T17:45:44.828Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2022-40267
Vulnerability from cvelistv5
Published
2023-01-20 07:52
Modified
2024-08-03 12:14
Severity ?
EPSS score ?
Summary
Authentication Bypass Vulnerability in Web Server Function on MELSEC Series
References
Impacted products
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-03T12:14:39.972Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2022-1646" }, { "tags": [ "x_transferred" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-019_en.pdf" }, { "tags": [ "x_transferred" ], "url": "https://jvn.jp/vu/JVNVU99673580/index.html" }, { "tags": [ "x_transferred" ], "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-017-02" } ], "title": "CVE Program Container" }, { "affected": [ { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5u-80mt\\/ess_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5u-80mt\\/ess_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5u-32mt\\/dss_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5u-32mt\\/dss_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5u-64mt\\/dss_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5u-64mt\\/dss_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5u-80mt\\/dss_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5u-80mt\\/dss_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uc-32mt\\/d_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uc-32mt\\/d_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uc-64mt\\/d_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uc-64mt\\/d_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uc-96mt\\/d_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uc-96mt\\/d_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uc-32mt\\/dss_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uc-32mt\\/dss_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uc-64mt\\/dss_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uc-64mt\\/dss_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uc-96mt\\/dss_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uc-96mt\\/dss_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uc-32mt\\/ds-ts_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uc-32mt\\/ds-ts_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uc-32mt\\/dss-ts_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uc-32mt\\/dss-ts_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uc-32mr\\/ds-ts_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uc-32mr\\/ds-ts_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r00cpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r00cpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r01cpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r01cpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r02cpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r02cpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r04cpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r04cpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r08cpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r08cpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r16cpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r16cpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r32cpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r32cpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r120cpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r120cpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r04encpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r04encpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r08encpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r08encpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r16encpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r16encpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r32encpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r32encpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:r120encpu_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "r120encpu_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-24mt\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-24mt\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-40mt\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-40mt\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-60mt\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-60mt\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-24mr\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-24mr\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-40mr\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-40mr\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-60mr\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-60mr\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-24mt\\/ess_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-24mt\\/ess_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-40mt\\/ess_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-40mt\\/ess_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-60mt\\/ess_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-60mt\\/ess_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-24mt\\/es-a_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-24mt\\/es-a_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-40mt\\/es-a_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-40mt\\/es-a_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-60mt\\/es-a_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-60mt\\/es-a_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-24mr\\/es-a_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-24mr\\/es-a_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-40mr\\/es-a_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-40mr\\/es-a_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5uj-60mr\\/es-a_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5uj-60mr\\/es-a_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-30mt\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-30mt\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-40mt\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-40mt\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-60mt\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-60mt\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-80mt\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-80mt\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-30mr\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-30mr\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-40mr\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-40mr\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-60mr\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-60mr\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-80mr\\/es_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-80mr\\/es_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-30mt\\/ess_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-30mt\\/ess_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-40mt\\/ess_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-40mt\\/ess_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-60mt\\/ess_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-60mt\\/ess_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] }, { "cpes": [ "cpe:2.3:o:mitsubishielectric:fx5s-80mt\\/ess_firmware:-:*:*:*:*:*:*:*" ], "defaultStatus": "unknown", "product": "fx5s-80mt\\/ess_firmware", "vendor": "mitsubishielectric", "versions": [ { "lessThanOrEqual": "1.042", "status": "affected", "version": "0", "versionType": "custom" } ] } ], "metrics": [ { "other": { "content": { "id": "CVE-2022-40267", "options": [ { "Exploitation": "poc" }, { "Automatable": "no" }, { "Technical Impact": "partial" } ], "role": "CISA Coordinator", "timestamp": "2024-08-01T16:29:24.302691Z", "version": "2.0.3" }, "type": "ssvc" } } ], "providerMetadata": { "dateUpdated": "2024-08-01T17:23:35.219Z", "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP" }, "title": "CISA ADP Vulnrichment" } ], "cna": { "affected": [ { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Seres FX5U-80MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-64MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-96MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-64MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-96MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "serial number 17X**** or later, and versions 1.280 and prior" }, { "status": "affected", "version": "serial number 179**** and prior, and versions 1.074 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 1.280 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DSS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 1.280 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MR/DS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 1.280 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R00CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 33 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R01CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 33 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 33 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 66 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 66 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 66 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 66 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 66 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 66 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 66 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 66 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 66 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 66 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.042 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.042 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.042 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.042 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.042 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.042 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.042 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.042 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.042 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.043 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.043 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.043 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MR/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.043 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MR/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.043 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MR/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.043 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-30MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-40MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-60MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-80MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-30MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-40MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-60MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-80MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-30MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-40MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-60MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-80MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "1.003 and prior" } ] } ], "descriptions": [ { "lang": "en", "supportingMedia": [ { "base64": false, "type": "text/html", "value": "Predictable Seed in Pseudo-Random Number Generator (PRNG) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DSS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/z (x=24,40,60, y=T,R, z=ES,ESS) versions 1.042 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/ES-A (x=24,40,60, y=T,R) versions 1.043 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5S-xMy/z (x=30,40,60,80, y=T,R, z=ES,ESS) versions 1.003 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MR/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU versions 33 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU versions 66 and prior allows a remote unauthenticated attacker to access the Web server function by guessing the random numbers used for authentication from several used random numbers." } ], "value": "Predictable Seed in Pseudo-Random Number Generator (PRNG) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DSS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/z (x=24,40,60, y=T,R, z=ES,ESS) versions 1.042 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/ES-A (x=24,40,60, y=T,R) versions 1.043 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5S-xMy/z (x=30,40,60,80, y=T,R, z=ES,ESS) versions 1.003 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MR/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU versions 33 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU versions 66 and prior allows a remote unauthenticated attacker to access the Web server function by guessing the random numbers used for authentication from several used random numbers." } ], "metrics": [ { "cvssV3_1": { "attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1" }, "format": "CVSS", "scenarios": [ { "lang": "en", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-337", "description": "CWE-337 Predictable Seed in Pseudo-Random Number Generator (PRNG) ", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2023-04-18T03:55:27.038Z", "orgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "shortName": "Mitsubishi" }, "references": [ { "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-019_en.pdf" }, { "url": "https://jvn.jp/vu/JVNVU99673580/index.html" }, { "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-017-02" } ], "source": { "discovery": "UNKNOWN" }, "title": "Authentication Bypass Vulnerability in Web Server Function on MELSEC Series", "x_generator": { "engine": "Vulnogram 0.1.0-dev" } } }, "cveMetadata": { "assignerOrgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "assignerShortName": "Mitsubishi", "cveId": "CVE-2022-40267", "datePublished": "2023-01-20T07:52:56.784Z", "dateReserved": "2022-09-08T19:40:16.931Z", "dateUpdated": "2024-08-03T12:14:39.972Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2023-4625
Vulnerability from cvelistv5
Published
2023-11-06 04:57
Modified
2024-08-02 07:31
Severity ?
EPSS score ?
Summary
Denial-of-Service(DoS) Vulnerability in Web server function on MELSEC Series CPU module
References
▼ | URL | Tags |
---|---|---|
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-014_en.pdf | vendor-advisory | |
https://jvn.jp/vu/JVNVU94620134 | government-resource | |
https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-02 | government-resource |
Impacted products
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-02T07:31:06.570Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "vendor-advisory", "x_transferred" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-014_en.pdf" }, { "tags": [ "government-resource", "x_transferred" ], "url": "https://jvn.jp/vu/JVNVU94620134" }, { "tags": [ "government-resource", "x_transferred" ], "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-02" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-32MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-64MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5U-80MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-64MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-96MT/D", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-64MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-96MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions (for serial number 17X**** and later)" }, { "status": "affected", "version": "1.060 or later (for serial number 179**** and prior)" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MT/DSS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UC-32MR/DS-TS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MR/DS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/DSS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MT/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MT/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MT/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-24MR/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-40MR/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5UJ-60MR/ES-A", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-30MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-40MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-60MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-80MT/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-30MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-40MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-60MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-80MR/ES", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-30MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-40MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-60MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-F Series FX5S-80MT/ESS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "all versions" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R00CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 05 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R01CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 05 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 05 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 35 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 37 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 37 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 37 or later" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "versions 37 or later" } ] } ], "descriptions": [ { "lang": "en", "supportingMedia": [ { "base64": false, "type": "text/html", "value": "Improper Restriction of Excessive Authentication Attempts vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F/iQ-R Series CPU modules Web server function allows a remote unauthenticated attacker to prevent legitimate users from logging into the Web server function for a certain period after the attacker has attempted to log in illegally by continuously attempting unauthorized login to the Web server function. The impact of this vulnerability will persist while the attacker continues to attempt unauthorized login." } ], "value": "Improper Restriction of Excessive Authentication Attempts vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F/iQ-R Series CPU modules Web server function allows a remote unauthenticated attacker to prevent legitimate users from logging into the Web server function for a certain period after the attacker has attempted to log in illegally by continuously attempting unauthorized login to the Web server function. The impact of this vulnerability will persist while the attacker continues to attempt unauthorized login." } ], "impacts": [ { "descriptions": [ { "lang": "en", "value": "Denial of Service(DoS)" } ] } ], "metrics": [ { "cvssV3_1": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1" }, "format": "CVSS", "scenarios": [ { "lang": "en", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-307", "description": "CWE-307 Improper Restriction of Excessive Authentication Attempts", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2024-02-15T05:17:45.711Z", "orgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "shortName": "Mitsubishi" }, "references": [ { "tags": [ "vendor-advisory" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-014_en.pdf" }, { "tags": [ "government-resource" ], "url": "https://jvn.jp/vu/JVNVU94620134" }, { "tags": [ "government-resource" ], "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-02" } ], "source": { "discovery": "UNKNOWN" }, "title": "Denial-of-Service\uff08DoS\uff09 Vulnerability in Web server function on MELSEC Series CPU module", "x_generator": { "engine": "Vulnogram 0.1.0-dev" } } }, "cveMetadata": { "assignerOrgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "assignerShortName": "Mitsubishi", "cveId": "CVE-2023-4625", "datePublished": "2023-11-06T04:57:44.446Z", "dateReserved": "2023-08-30T12:11:44.835Z", "dateUpdated": "2024-08-02T07:31:06.570Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2021-20609
Vulnerability from cvelistv5
Published
2021-12-01 15:41
Modified
2024-08-03 17:45
Severity ?
EPSS score ?
Summary
Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery.
References
▼ | URL | Tags |
---|---|---|
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf | vendor-advisory | |
https://jvn.jp/vu/JVNVU94434051/index.html | government-resource | |
https://us-cert.cisa.gov/ics/advisories/icsa-21-334-02 | government-resource |
Impacted products
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-03T17:45:44.852Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "vendor-advisory", "x_transferred" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf" }, { "tags": [ "government-resource", "x_transferred" ], "url": "https://jvn.jp/vu/JVNVU94434051/index.html" }, { "tags": [ "government-resource", "x_transferred" ], "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-334-02" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R00CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"24\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R01CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"24\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"24\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16MTCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"23\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32MTCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"23\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R64MTCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"23\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R12CCPU-V", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"16\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q03UDECPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q04UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q06UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q10UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q13UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q20UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q50UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q100UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q03UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q04UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q06UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q13UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q04UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q06UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q13UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q12DCCPU-V", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q24DHCCPU-V ", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q24DHCCPU-VG", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q24DHCCPU-LS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26DHCCPU-LS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series MR-MQ100", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"F\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q172DCPU-S1", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"W\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q173DCPU-S1", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"W\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q172DSCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q173DSCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q170MCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"W\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q170MSCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q170MSCPU-S1", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L06CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L02CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L06CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU-BT", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU-PBT", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELIPC Series MI5122-VW", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"05\" and prior" } ] } ], "descriptions": [ { "lang": "en", "supportingMedia": [ { "base64": false, "type": "text/html", "value": "Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery." } ], "value": "Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery." } ], "impacts": [ { "descriptions": [ { "lang": "en", "value": "Denial of Service" } ] } ], "metrics": [ { "cvssV3_1": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "format": "CVSS", "scenarios": [ { "lang": "en", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-400", "description": "CWE-400 Uncontrolled Resource Consumption", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2023-11-09T08:22:47.621Z", "orgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "shortName": "Mitsubishi" }, "references": [ { "tags": [ "vendor-advisory" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf" }, { "tags": [ "government-resource" ], "url": "https://jvn.jp/vu/JVNVU94434051/index.html" }, { "tags": [ "government-resource" ], "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-334-02" } ], "source": { "discovery": "UNKNOWN" }, "x_generator": { "engine": "Vulnogram 0.1.0-dev" } } }, "cveMetadata": { "assignerOrgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "assignerShortName": "Mitsubishi", "cveId": "CVE-2021-20609", "datePublished": "2021-12-01T15:41:20", "dateReserved": "2020-12-17T00:00:00", "dateUpdated": "2024-08-03T17:45:44.852Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }
cve-2021-20611
Vulnerability from cvelistv5
Published
2021-12-01 15:41
Modified
2024-08-03 17:45
Severity ?
EPSS score ?
Summary
Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery.
References
▼ | URL | Tags |
---|---|---|
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf | vendor-advisory | |
https://jvn.jp/vu/JVNVU94434051/index.html | government-resource | |
https://us-cert.cisa.gov/ics/advisories/icsa-21-334-02 | government-resource |
Impacted products
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-03T17:45:44.828Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "vendor-advisory", "x_transferred" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf" }, { "tags": [ "government-resource", "x_transferred" ], "url": "https://jvn.jp/vu/JVNVU94434051/index.html" }, { "tags": [ "government-resource", "x_transferred" ], "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-334-02" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R00CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"24\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R01CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"24\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"24\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R04ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120ENCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"57\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120SFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"26\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"29\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R08PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R120PSFCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"08\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R16MTCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"23\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R32MTCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"23\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R64MTCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"23\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC iQ-R Series R12CCPU-V", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"16\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q03UDECPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q04UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q06UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q10UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q13UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q20UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q50UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q100UDEHCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q03UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q04UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q06UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q13UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26UDVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q04UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q06UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q13UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26UDPVCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23071\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q12DCCPU-V", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q24DHCCPU-V ", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q24DHCCPU-VG", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q24DHCCPU-LS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q26DHCCPU-LS", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"24031\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series MR-MQ100", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"F\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q172DCPU-S1", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"W\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q173DCPU-S1", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"W\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q172DSCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q173DSCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q170MCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"W\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q170MSCPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC Q Series Q170MSCPU-S1", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Operating system software version \"Y\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L02CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L06CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L02CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L06CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU-P", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU-BT", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELSEC L Series L26CPU-PBT", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "The first 5 digits of serial No. \"23121\" and prior" } ] }, { "defaultStatus": "unaffected", "product": "MELIPC Series MI5122-VW", "vendor": "Mitsubishi Electric Corporation", "versions": [ { "status": "affected", "version": "Firmware versions \"05\" and prior" } ] } ], "descriptions": [ { "lang": "en", "supportingMedia": [ { "base64": false, "type": "text/html", "value": "Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery." } ], "value": "Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery." } ], "impacts": [ { "descriptions": [ { "lang": "en", "value": "Denial of Service" } ] } ], "metrics": [ { "cvssV3_1": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "format": "CVSS", "scenarios": [ { "lang": "en", "value": "GENERAL" } ] } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-20", "description": "CWE-20 Improper Input Validation", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2023-11-09T08:23:22.311Z", "orgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "shortName": "Mitsubishi" }, "references": [ { "tags": [ "vendor-advisory" ], "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-019_en.pdf" }, { "tags": [ "government-resource" ], "url": "https://jvn.jp/vu/JVNVU94434051/index.html" }, { "tags": [ "government-resource" ], "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-334-02" } ], "source": { "discovery": "UNKNOWN" }, "x_generator": { "engine": "Vulnogram 0.1.0-dev" } } }, "cveMetadata": { "assignerOrgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad", "assignerShortName": "Mitsubishi", "cveId": "CVE-2021-20611", "datePublished": "2021-12-01T15:41:31", "dateReserved": "2020-12-17T00:00:00", "dateUpdated": "2024-08-03T17:45:44.828Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1" }