CVE-2023-6815

🗓️ 13 Feb 2024 06:27:51Reported by MitsubishiType

Incorrect Privilege Assignment vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Serie

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2023-6815	13 Feb 202408:21	–	circl
CNNVD	Mitsubishi Electric MELSEC iQ-R series 安全漏洞	13 Feb 202400:00	–	cnnvd
CNVD	Mitsubishi Electric MELSEC iQ-R series Information Disclosure Vulnerability	22 Apr 202400:00	–	cnvd
Cvelist	CVE-2023-6815	13 Feb 202406:27	–	cvelist
EUVD	EUVD-2023-59025	3 Oct 202520:07	–	euvd
ICS	Mitsubishi Electric MELSEC iQ-R Series Safety CPU and SIL2 Process CPU (Update A)	13 Feb 202407:00	–	ics
NVD	CVE-2023-6815	13 Feb 202407:15	–	nvd
Prion	Privilege escalation	13 Feb 202407:15	–	prion
Positive Technologies	PT-2024-2826 · Mitsubishi · Melsec Iq-R Series Safety Cpu +1	12 Feb 202400:00	–	ptsecurity
RedhatCVE	CVE-2023-6815	23 May 202504:58	–	redhatcve

NVD

Node

mitsubishielectric r08sfcpu_firmware

AND

mitsubishielectric r08sfcpuMatch-

Node

mitsubishielectric r16sfcpu_firmware

AND

mitsubishielectric r16sfcpuMatch-

Node

mitsubishielectric r32sfcpu_firmware

AND

mitsubishielectric r32sfcpuMatch-

Node

mitsubishielectric r120sfcpu_firmware

AND

mitsubishielectric r120sfcpuMatch-

Node

mitsubishielectric r08psfcpu_firmware

AND

mitsubishielectric r08psfcpuMatch-

Node

mitsubishielectric r16psfcpu_firmware

AND

mitsubishielectric r16psfcpuMatch-

Node

mitsubishielectric r32psfcpu_firmware

AND

mitsubishielectric r32psfcpuMatch-

Node

mitsubishielectric r120psfcpu_firmware

AND

mitsubishielectric r120psfcpuMatch-

[
  {
    "defaultStatus": "unaffected",
    "product": "MELSEC iQ-R Series Safety CPU R08SFCPU",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "all versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MELSEC iQ-R Series Safety CPU R16SFCPU",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "all versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MELSEC iQ-R Series Safety CPU R32SFCPU",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "all versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MELSEC iQ-R Series Safety CPU R120SFCPU",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "all versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MELSEC iQ-R Series SIL2 Process CPU R08PSFCPU",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "all versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MELSEC iQ-R Series SIL2 Process CPU R16PSFCPU",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "all versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MELSEC iQ-R Series SIL2 Process CPU R32PSFCPU",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "all versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "MELSEC iQ-R Series SIL2 Process CPU R120PSFCPU",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "all versions"
      }
    ]
  }
]

Source	Link
cisa	www.cisa.gov/news-events/ics-advisories/icsa-24-044-01
mitsubishielectric	www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-021_en.pdf
jvn	www.jvn.jp/vu/JVNVU95085830/index.html

21 Nov 2024 08:44Current

6.2Medium risk

Vulners AI Score6.2

CVSS 3.16.5

EPSS0.00251

SSVC

CWE-266