Lucene search

[email protected]NVD:CVE-2023-2846

HistoryJun 30, 2023 - 5:15 a.m.

CVE-2023-2846

2023-06-3005:15:09

CWE-294

[email protected]

web.nvd.nist.gov

mitsubishi electric

authentication bypass

capture-replay

vulnerability

melsec iq-f series

remote unauthenticated attack

password setting

specially crafted packets

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

8.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.1%

JSON

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series main modules allows a remote unauthenticated attacker to cancel the password/keyword setting and login to the affected products by sending specially crafted packets.

Affected configurations

NVD

Node

mitsubishielectricfx3u-16mr\/es_firmwareMatch-

AND

mitsubishielectricfx3u-16mr\/esMatch-

Node

mitsubishielectricfx3u-16mt\/es_firmwareMatch-

AND

mitsubishielectricfx3u-16mt\/esMatch-

Node

mitsubishielectricfx3u-16mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3u-16mt\/essMatch-

Node

mitsubishielectricfx3u-32mr\/es_firmwareMatch-

AND

mitsubishielectricfx3u-32mr\/esMatch-

Node

mitsubishielectricfx3u-32mt\/es_firmwareMatch-

AND

mitsubishielectricfx3u-32mt\/esMatch-

Node

mitsubishielectricfx3u-32mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3u-32mt\/essMatch-

Node

mitsubishielectricfx3u-48mr\/es_firmwareMatch-

AND

mitsubishielectricfx3u-48mr\/esMatch-

Node

mitsubishielectricfx3u-48mt\/es_firmwareMatch-

AND

mitsubishielectricfx3u-48mt\/esMatch-

Node

mitsubishielectricfx3u-48mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3u-48mt\/essMatch-

Node

mitsubishielectricfx3u-64mr\/es_firmwareMatch-

AND

mitsubishielectricfx3u-64mr\/esMatch-

Node

mitsubishielectricfx3u-64mt\/es_firmwareMatch-

AND

mitsubishielectricfx3u-64mt\/esMatch-

Node

mitsubishielectricfx3u-64mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3u-64mt\/essMatch-

Node

mitsubishielectricfx3u-80mr\/es_firmwareMatch-

AND

mitsubishielectricfx3u-80mr\/esMatch-

Node

mitsubishielectricfx3u-80mt\/es_firmwareMatch-

AND

mitsubishielectricfx3u-80mt\/esMatch-

Node

mitsubishielectricfx3u-80mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3u-80mt\/essMatch-

Node

mitsubishielectricfx3u-128mr\/es_firmwareMatch-

AND

mitsubishielectricfx3u-128mr\/esMatch-

Node

mitsubishielectricfx3u-128mt\/es_firmwareMatch-

AND

mitsubishielectricfx3u-128mt\/esMatch-

Node

mitsubishielectricfx3u-128mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3u-128mt\/essMatch-

Node

mitsubishielectricfx3u-16mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3u-16mr\/dsMatch-

Node

mitsubishielectricfx3u-16mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3u-16mt\/dsMatch-

Node

mitsubishielectricfx3u-16mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3u-16mt\/dssMatch-

Node

mitsubishielectricfx3u-32mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3u-32mr\/dsMatch-

Node

mitsubishielectricfx3u-32mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3u-32mt\/dsMatch-

Node

mitsubishielectricfx3u-32mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3u-32mt\/dssMatch-

Node

mitsubishielectricfx3u-48mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3u-48mr\/dsMatch-

Node

mitsubishielectricfx3u-48mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3u-48mt\/dsMatch-

Node

mitsubishielectricfx3u-48mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3u-48mt\/dssMatch-

Node

mitsubishielectricfx3u-64mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3u-64mr\/dsMatch-

Node

mitsubishielectricfx3u-64mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3u-64mt\/dsMatch-

Node

mitsubishielectricfx3u-64mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3u-64mt\/dssMatch-

Node

mitsubishielectricfx3u-80mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3u-80mr\/dsMatch-

Node

mitsubishielectricfx3u-80mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3u-80mt\/dsMatch-

Node

mitsubishielectricfx3u-80mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3u-80mt\/dssMatch-

Node

mitsubishielectricfx3u-32mr\/ua1_firmwareMatch-

AND

mitsubishielectricfx3u-32mr\/ua1Match-

Node

mitsubishielectricfx3u-64mr\/ua1_firmwareMatch-

AND

mitsubishielectricfx3u-64mr\/ua1Match-

Node

mitsubishielectricfx3u-32ms\/es_firmwareMatch-

AND

mitsubishielectricfx3u-32ms\/esMatch-

Node

mitsubishielectricfx3u-64ms\/es_firmwareMatch-

AND

mitsubishielectricfx3u-64ms\/esMatch-

Node

mitsubishielectricfx3u-16mr\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-16mr\/es-aMatch-

Node

mitsubishielectricfx3u-16mt\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-16mt\/es-aMatch-

Node

mitsubishielectricfx3u-32mr\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-32mr\/es-aMatch-

Node

mitsubishielectricfx3u-32mt\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-32mt\/es-aMatch-

Node

mitsubishielectricfx3u-48mr\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-48mr\/es-aMatch-

Node

mitsubishielectricfx3u-48mt\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-48mt\/es-aMatch-

Node

mitsubishielectricfx3u-64mr\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-64mr\/es-aMatch-

Node

mitsubishielectricfx3u-64mt\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-64mt\/es-aMatch-

Node

mitsubishielectricfx3u-80mr\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-80mr\/es-aMatch-

Node

mitsubishielectricfx3u-80mt\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-80mt\/es-aMatch-

Node

mitsubishielectricfx3u-128mr\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-128mr\/es-aMatch-

Node

mitsubishielectricfx3u-128mt\/es-a_firmwareMatch-

AND

mitsubishielectricfx3u-128mt\/es-aMatch-

Node

mitsubishielectricfx3uc-16mt\/d_firmwareMatch-

AND

mitsubishielectricfx3uc-16mt\/dMatch-

Node

mitsubishielectricfx3uc-32mt\/d_firmwareMatch-

AND

mitsubishielectricfx3uc-32mt\/dMatch-

Node

mitsubishielectricfx3uc-64mt\/d_firmwareMatch-

AND

mitsubishielectricfx3uc-64mt\/dMatch-

Node

mitsubishielectricfx3uc-96mt\/d_firmwareMatch-

AND

mitsubishielectricfx3uc-96mt\/dMatch-

Node

mitsubishielectricfx3uc-16mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3uc-16mt\/dssMatch-

Node

mitsubishielectricfx3uc-32mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3uc-32mt\/dssMatch-

Node

mitsubishielectricfx3uc-64mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3uc-64mt\/dssMatch-

Node

mitsubishielectricfx3uc-96mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3uc-96mt\/dssMatch-

Node

mitsubishielectricfx3uc-16mr\/d-t_firmwareMatch-

AND

mitsubishielectricfx3uc-16mr\/d-tMatch-

Node

mitsubishielectricfx3uc-16mr\/ds-t_firmwareMatch-

AND

mitsubishielectricfx3uc-16mr\/ds-tMatch-

Node

mitsubishielectricfx3uc-32mt-lt_firmwareMatch-

AND

mitsubishielectricfx3uc-32mt-ltMatch-

Node

mitsubishielectricfx3uc-32mt-lt-2_firmwareMatch-

AND

mitsubishielectricfx3uc-32mt-lt-2Match-

Node

mitsubishielectricfx3uc-16mt\/d-p4_firmwareMatch-

AND

mitsubishielectricfx3uc-16mt\/d-p4Match-

Node

mitsubishielectricfx3uc-16mt\/dss-p4_firmwareMatch-

AND

mitsubishielectricfx3uc-16mt\/dss-p4Match-

Node

mitsubishielectricfx3g-14mr\/es_firmwareMatch-

AND

mitsubishielectricfx3g-14mr\/esMatch-

Node

mitsubishielectricfx3g-14mt\/es_firmwareMatch-

AND

mitsubishielectricfx3g-14mt\/esMatch-

Node

mitsubishielectricfx3g-14mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3g-14mt\/essMatch-

Node

mitsubishielectricfx3g-24mr\/es_firmwareMatch-

AND

mitsubishielectricfx3g-24mr\/esMatch-

Node

mitsubishielectricfx3g-24mt\/es_firmwareMatch-

AND

mitsubishielectricfx3g-24mt\/esMatch-

Node

mitsubishielectricfx3g-24mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3g-24mt\/essMatch-

Node

mitsubishielectricfx3g-40mr\/es_firmwareMatch-

AND

mitsubishielectricfx3g-40mr\/esMatch-

Node

mitsubishielectricfx3g-40mt\/es_firmwareMatch-

AND

mitsubishielectricfx3g-40mt\/esMatch-

Node

mitsubishielectricfx3g-40mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3g-40mt\/essMatch-

Node

mitsubishielectricfx3g-60mr\/es_firmwareMatch-

AND

mitsubishielectricfx3g-60mr\/esMatch-

Node

mitsubishielectricfx3g-60mt\/es_firmwareMatch-

AND

mitsubishielectricfx3g-60mt\/esMatch-

Node

mitsubishielectricfx3g-60mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3g-60mt\/essMatch-

Node

mitsubishielectricfx3g-14mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3g-14mr\/dsMatch-

Node

mitsubishielectricfx3g-14mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3g-14mt\/dsMatch-

Node

mitsubishielectricfx3g-14mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3g-14mt\/dssMatch-

Node

mitsubishielectricfx3g-24mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3g-24mr\/dsMatch-

Node

mitsubishielectricfx3g-24mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3g-24mt\/dsMatch-

Node

mitsubishielectricfx3g-24mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3g-24mt\/dssMatch-

Node

mitsubishielectricfx3g-40mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3g-40mr\/dsMatch-

Node

mitsubishielectricfx3g-40mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3g-40mt\/dsMatch-

Node

mitsubishielectricfx3g-40mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3g-40mt\/dssMatch-

Node

mitsubishielectricfx3g-60mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3g-60mr\/dsMatch-

Node

mitsubishielectricfx3g-60mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3g-60mt\/dsMatch-

Node

mitsubishielectricfx3g-60mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3g-60mt\/dssMatch-

Node

mitsubishielectricfx3g-14mr\/es-a_firmwareMatch-

AND

mitsubishielectricfx3g-14mr\/es-aMatch-

Node

mitsubishielectricfx3g-14mt\/es-a_firmwareMatch-

AND

mitsubishielectricfx3g-14mt\/es-aMatch-

Node

mitsubishielectricfx3g-24mr\/es-a_firmwareMatch-

AND

mitsubishielectricfx3g-24mr\/es-aMatch-

Node

mitsubishielectricfx3g-24mt\/es-a_firmwareMatch-

AND

mitsubishielectricfx3g-24mt\/es-aMatch-

Node

mitsubishielectricfx3g-40mr\/es-a_firmwareMatch-

AND

mitsubishielectricfx3g-40mr\/es-aMatch-

Node

mitsubishielectricfx3g-40mt\/es-a_firmwareMatch-

AND

mitsubishielectricfx3g-40mt\/es-aMatch-

Node

mitsubishielectricfx3g-60mr\/es-a_firmwareMatch-

AND

mitsubishielectricfx3g-60mr\/es-aMatch-

Node

mitsubishielectricfx3g-60mt\/es-a_firmwareMatch-

AND

mitsubishielectricfx3g-60mt\/es-aMatch-

Node

mitsubishielectricfx3gc-32mt\/d_firmwareMatch-

AND

mitsubishielectricfx3gc-32mt\/dMatch-

Node

mitsubishielectricfx3gc-32mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3gc-32mt\/dssMatch-

Node

mitsubishielectricfx3ge-24mr\/es_firmwareMatch-

AND

mitsubishielectricfx3ge-24mr\/esMatch-

Node

mitsubishielectricfx3ge-24mt\/es_firmwareMatch-

AND

mitsubishielectricfx3ge-24mt\/esMatch-

Node

mitsubishielectricfx3ge-24mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3ge-24mt\/essMatch-

Node

mitsubishielectricfx3ge-40mr\/es_firmwareMatch-

AND

mitsubishielectricfx3ge-40mr\/esMatch-

Node

mitsubishielectricfx3ge-40mt\/es_firmwareMatch-

AND

mitsubishielectricfx3ge-40mt\/esMatch-

Node

mitsubishielectricfx3ge-40mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3ge-40mt\/essMatch-

Node

mitsubishielectricfx3ge-24mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3ge-24mr\/dsMatch-

Node

mitsubishielectricfx3ge-24mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3ge-24mt\/dsMatch-

Node

mitsubishielectricfx3ge-24mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3ge-24mt\/dssMatch-

Node

mitsubishielectricfx3ge-40mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3ge-40mr\/dsMatch-

Node

mitsubishielectricfx3ge-40mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3ge-40mt\/dsMatch-

Node

mitsubishielectricfx3ge-40mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3ge-40mt\/dssMatch-

Node

mitsubishielectricfx3ga-24mr-cm_firmwareMatch-

AND

mitsubishielectricfx3ga-24mr-cmMatch-

Node

mitsubishielectricfx3ga-24mt-cm_firmwareMatch-

AND

mitsubishielectricfx3ga-24mt-cmMatch-

Node

mitsubishielectricfx3ga-40mr-cm_firmwareMatch-

AND

mitsubishielectricfx3ga-40mr-cmMatch-

Node

mitsubishielectricfx3ga-40mt-cm_firmwareMatch-

AND

mitsubishielectricfx3ga-40mt-cmMatch-

Node

mitsubishielectricfx3ga-60mr-cm_firmwareMatch-

AND

mitsubishielectricfx3ga-60mr-cmMatch-

Node

mitsubishielectricfx3ga-60mt-cm_firmwareMatch-

AND

mitsubishielectricfx3ga-60mt-cmMatch-

Node

mitsubishielectricfx3s-10mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3s-10mr\/dsMatch-

Node

mitsubishielectricfx3s-10mr\/es_firmwareMatch-

AND

mitsubishielectricfx3s-10mr\/esMatch-

Node

mitsubishielectricfx3s-10mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3s-10mt\/dsMatch-

Node

mitsubishielectricfx3s-10mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3s-10mt\/dssMatch-

Node

mitsubishielectricfx3s-10mt\/es_firmwareMatch-

AND

mitsubishielectricfx3s-10mt\/esMatch-

Node

mitsubishielectricfx3s-10mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3s-10mt\/essMatch-

Node

mitsubishielectricfx3s-14mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3s-14mr\/dsMatch-

Node

mitsubishielectricfx3s-14mr\/es_firmwareMatch-

AND

mitsubishielectricfx3s-14mr\/esMatch-

Node

mitsubishielectricfx3s-14mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3s-14mt\/dsMatch-

Node

mitsubishielectricfx3s-14mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3s-14mt\/dssMatch-

Node

mitsubishielectricfx3s-14mt\/es_firmwareMatch-

AND

mitsubishielectricfx3s-14mt\/esMatch-

Node

mitsubishielectricfx3s-14mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3s-14mt\/essMatch-

Node

mitsubishielectricfx3s-20mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3s-20mr\/dsMatch-

Node

mitsubishielectricfx3s-20mr\/es_firmwareMatch-

AND

mitsubishielectricfx3s-20mr\/esMatch-

Node

mitsubishielectricfx3s-20mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3s-20mt\/dsMatch-

Node

mitsubishielectricfx3s-20mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3s-20mt\/dssMatch-

Node

mitsubishielectricfx3s-20mt\/es_firmwareMatch-

AND

mitsubishielectricfx3s-20mt\/esMatch-

Node

mitsubishielectricfx3s-20mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3s-20mt\/essMatch-

Node

mitsubishielectricfx3s-30mr\/ds_firmwareMatch-

AND

mitsubishielectricfx3s-30mr\/dsMatch-

Node

mitsubishielectricfx3s-30mr\/es_firmwareMatch-

AND

mitsubishielectricfx3s-30mr\/esMatch-

Node

mitsubishielectricfx3s-30mt\/ds_firmwareMatch-

AND

mitsubishielectricfx3s-30mt\/dsMatch-

Node

mitsubishielectricfx3s-30mt\/dss_firmwareMatch-

AND

mitsubishielectricfx3s-30mt\/dssMatch-

Node

mitsubishielectricfx3s-30mt\/es_firmwareMatch-

AND

mitsubishielectricfx3s-30mt\/esMatch-

Node

mitsubishielectricfx3s-30mt\/ess_firmwareMatch-

AND

mitsubishielectricfx3s-30mt\/essMatch-

Node

mitsubishielectricfx3s-30mr\/es-2ad_firmwareMatch-

AND

mitsubishielectricfx3s-30mr\/es-2adMatch-

Node

mitsubishielectricfx3s-30mt\/es-2ad_firmwareMatch-

AND

mitsubishielectricfx3s-30mt\/es-2adMatch-

Node

mitsubishielectricfx3s-30mt\/ess-2ad_firmwareMatch-

AND

mitsubishielectricfx3s-30mt\/ess-2adMatch-

Node

mitsubishielectricfx3sa-10mr-cm_firmwareMatch-

AND

mitsubishielectricfx3sa-10mr-cmMatch-

Node

mitsubishielectricfx3sa-10mt-cm_firmwareMatch-

AND

mitsubishielectricfx3sa-10mt-cmMatch-

Node

mitsubishielectricfx3sa-14mr-cm_firmwareMatch-

AND

mitsubishielectricfx3sa-14mr-cmMatch-

Node

mitsubishielectricfx3sa-14mt-cm_firmwareMatch-

AND

mitsubishielectricfx3sa-14mt-cmMatch-

Node

mitsubishielectricfx3sa-20mr-cm_firmwareMatch-

AND

mitsubishielectricfx3sa-20mr-cmMatch-

Node

mitsubishielectricfx3sa-20mt-cm_firmwareMatch-

AND

mitsubishielectricfx3sa-20mt-cmMatch-

Node

mitsubishielectricfx3sa-30mr-cm_firmwareMatch-

AND

mitsubishielectricfx3sa-30mr-cmMatch-

Node

mitsubishielectricfx3sa-30mt-cm_firmwareMatch-

AND

mitsubishielectricfx3sa-30mt-cmMatch-

References

jvn.jp/vu/JVNVU94519952

www.cisa.gov/news-events/ics-advisories/icsa-23-180-04

www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-005_en.pdf

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

8.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.1%

JSON

Related for NVD:CVE-2023-2846

nessus1 ics1 prion1 cvelist1 cve1