Vulnerability Details CVE-2023-1424
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules and MELSEC iQ-R Series CPU modules allows a remote unauthenticated attacker to cause a denial of service (DoS) condition or execute malicious code on a target product by sending specially crafted packets. A system reset of the product is required for recovery from a denial of service (DoS) condition and malicious code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 78.9%
CVSS Severity
CVSS v3 Score 10.0
References
- https://jvn.jp/vu/JVNVU94650413
- https://www.cisa.gov/news-events/ics-advisories/icsa-23-143-03
- https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-003_en.pdf
- https://jvn.jp/vu/JVNVU94650413
- https://www.cisa.gov/news-events/ics-advisories/icsa-23-143-03
- https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-003_en.pdf
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1727
Products affected by CVE-2023-1424
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-32mr/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-32mr/dss:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-32mr/es:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-32mr/ess:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-32mt/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-32mt/dss:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-32mt/es:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-32mt/ess:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-64mr/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-64mr/dss:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-64mr/es:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-64mr/ess:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-64mt/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-64mt/dss:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-64mt/es:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-64mt/ess:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-80mr/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-80mr/dss:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-80mr/es:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-80mr/ess:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-80mt/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-80mt/dss:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-80mt/es:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5u-80mt/ess:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-32mr/dds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-32mr/ds-ts:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-32mr/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-32mt/dds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-32mt/ds-ts:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-32mt/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-32mt/dss-ts:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-64mr/dds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-64mr/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-64mt/dds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-64mt/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-96mr/dds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-96mr/ds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-96mt/dds:-
-
cpe:2.3:h:mitsubishielectric:melsec_iq-fx5uc-96mt/ds:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-32mr/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-32mr/dss_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-32mr/es_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-32mr/ess_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-32mt/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-32mt/dss_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-32mt/es_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-32mt/ess_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-64mr/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-64mr/dss_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-64mr/es_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-64mr/ess_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-64mt/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-64mt/dss_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-64mt/es_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-64mt/ess_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-80mr/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-80mr/dss_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-80mr/es_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-80mr/ess_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-80mt/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-80mt/dss_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-80mt/es_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5u-80mt/ess_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-32mr/dds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-32mr/ds-ts_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-32mr/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-32mt/dds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-32mt/ds-ts_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-32mt/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-32mt/dss-ts_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-64mr/dds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-64mr/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-64mt/dds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-64mt/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-96mr/dds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-96mr/ds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-96mt/dds_firmware:-
-
cpe:2.3:o:mitsubishielectric:melsec_iq-fx5uc-96mt/ds_firmware:-