Vulnerability Details CVE-2023-3346
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition and execute arbitrary code on the product by sending specially crafted packets. In addition, system reset is required for recovery.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.4%
CVSS Severity
CVSS v3 Score 9.8
References
- https://jvn.jp/vu/JVNVU90352157/index.html
- https://www.cisa.gov/news-events/ics-advisories/icsa-23-208-03
- https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-007_en.pdf
- https://jvn.jp/vu/JVNVU90352157/index.html
- https://www.cisa.gov/news-events/ics-advisories/icsa-23-208-03
- https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-007_en.pdf
Products affected by CVE-2023-3346
-
cpe:2.3:h:mitsubishielectric:c80:-
-
cpe:2.3:h:mitsubishielectric:e70:-
-
cpe:2.3:h:mitsubishielectric:e80:-
-
cpe:2.3:h:mitsubishielectric:m70v:-
-
cpe:2.3:h:mitsubishielectric:m720vs:-
-
cpe:2.3:h:mitsubishielectric:m720vs_15-type:-
-
cpe:2.3:h:mitsubishielectric:m720vw:-
-
cpe:2.3:h:mitsubishielectric:m730vs:-
-
cpe:2.3:h:mitsubishielectric:m730vs_15-type:-
-
cpe:2.3:h:mitsubishielectric:m730vw:-
-
cpe:2.3:h:mitsubishielectric:m750vs:-
-
cpe:2.3:h:mitsubishielectric:m750vs_15-type:-
-
cpe:2.3:h:mitsubishielectric:m750vw:-
-
cpe:2.3:h:mitsubishielectric:m800s:-
-
cpe:2.3:h:mitsubishielectric:m800vs:-
-
cpe:2.3:h:mitsubishielectric:m800vw:-
-
cpe:2.3:h:mitsubishielectric:m800w:-
-
cpe:2.3:h:mitsubishielectric:m80:-
-
cpe:2.3:h:mitsubishielectric:m80v:-
-
cpe:2.3:h:mitsubishielectric:m80vw:-
-
cpe:2.3:h:mitsubishielectric:m80w:-
-
cpe:2.3:o:mitsubishielectric:c80_firmware:-
-
cpe:2.3:o:mitsubishielectric:e70_firmware:-
-
cpe:2.3:o:mitsubishielectric:e80_firmware:-
-
cpe:2.3:o:mitsubishielectric:m70v_firmware:-
-
cpe:2.3:o:mitsubishielectric:m720vs_15-type_firmware:-
-
cpe:2.3:o:mitsubishielectric:m720vs_firmware:-
-
cpe:2.3:o:mitsubishielectric:m720vw_firmware:-
-
cpe:2.3:o:mitsubishielectric:m730vs_15-type_firmware:-
-
cpe:2.3:o:mitsubishielectric:m730vs_firmware:-
-
cpe:2.3:o:mitsubishielectric:m730vw_firmware:-
-
cpe:2.3:o:mitsubishielectric:m750vs_15-type_firmware:-
-
cpe:2.3:o:mitsubishielectric:m750vs_firmware:-
-
cpe:2.3:o:mitsubishielectric:m750vw_firmware:-
-
cpe:2.3:o:mitsubishielectric:m800s_firmware:-
-
cpe:2.3:o:mitsubishielectric:m800vs_firmware:-
-
cpe:2.3:o:mitsubishielectric:m800vw_firmware:-
-
cpe:2.3:o:mitsubishielectric:m800w_firmware:-
-
cpe:2.3:o:mitsubishielectric:m80_firmware:-
-
cpe:2.3:o:mitsubishielectric:m80v_firmware:-
-
cpe:2.3:o:mitsubishielectric:m80vw_firmware:-
-
cpe:2.3:o:mitsubishielectric:m80w_firmware:-