Lucene search

[email protected]NVD:CVE-2023-49140

HistoryDec 12, 2023 - 10:15 a.m.

CVE-2023-49140

2023-12-1210:15:10

CWE-400

[email protected]

web.nvd.nist.gov

cve-2023-49140

denial-of-service

commplex-link service

remote unauthenticated attacker

specially crafted packets

specific ports

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

34.9%

JSON

Denial-of-service (DoS) vulnerability exists in commplex-link service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service (DoS) condition may occur.

Affected configurations

Nvd

Node

jtektgc-a22w-cw_firmware

AND

jtektgc-a22w-cwMatch-

Node

jtektgc-a24w-c\(w\)_firmware

AND

jtektgc-a24w-c\(w\)Match-

Node

jtektgc-a26w-c\(w\)_firmware

AND

jtektgc-a26w-c\(w\)Match-

Node

jtektgc-a24_firmware

AND

jtektgc-a24Match-

Node

jtektgc-a24-m_firmware

AND

jtektgc-a24-mMatch-

Node

jtektgc-a25_firmware

AND

jtektgc-a25Match-

Node

jtektgc-a26_firmware

AND

jtektgc-a26Match-

Node

jtektgc-a26-j2_firmware

AND

jtektgc-a26-j2Match-

Node

jtektgc-a27-c_firmware

AND

jtektgc-a27-cMatch-

Node

jtektgc-a28-c_firmware

AND

jtektgc-a28-cMatch-

VendorProductVersionCPE
jtektgc-a22w-cw_firmware*cpe:2.3:o:jtekt:gc-a22w-cw_firmware:*:*:*:*:*:*:*:*
jtektgc-a22w-cw-cpe:2.3:h:jtekt:gc-a22w-cw:-:*:*:*:*:*:*:*
jtektgc-a24w-c\(w\)_firmware*cpe:2.3:o:jtekt:gc-a24w-c\(w\)_firmware:*:*:*:*:*:*:*:*
jtektgc-a24w-c\(w\)-cpe:2.3:h:jtekt:gc-a24w-c\(w\):-:*:*:*:*:*:*:*
jtektgc-a26w-c\(w\)_firmware*cpe:2.3:o:jtekt:gc-a26w-c\(w\)_firmware:*:*:*:*:*:*:*:*
jtektgc-a26w-c\(w\)-cpe:2.3:h:jtekt:gc-a26w-c\(w\):-:*:*:*:*:*:*:*
jtektgc-a24_firmware*cpe:2.3:o:jtekt:gc-a24_firmware:*:*:*:*:*:*:*:*
jtektgc-a24-cpe:2.3:h:jtekt:gc-a24:-:*:*:*:*:*:*:*
jtektgc-a24-m_firmware*cpe:2.3:o:jtekt:gc-a24-m_firmware:*:*:*:*:*:*:*:*
jtektgc-a24-m-cpe:2.3:h:jtekt:gc-a24-m:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
jtekt	gc-a22w-cw_firmware	*	cpe:2.3:o:jtekt:gc-a22w-cw_firmware::::::::
jtekt	gc-a22w-cw	-	cpe:2.3:h:jtekt:gc-a22w-cw:-:::::::*
jtekt	gc-a24w-c\(w\)_firmware	*	cpe:2.3:o:jtekt:gc-a24w-c\(w\)_firmware::::::::
jtekt	gc-a24w-c\(w\)	-	cpe:2.3:h:jtekt:gc-a24w-c\(w\):-:::::::*
jtekt	gc-a26w-c\(w\)_firmware	*	cpe:2.3:o:jtekt:gc-a26w-c\(w\)_firmware::::::::
jtekt	gc-a26w-c\(w\)	-	cpe:2.3:h:jtekt:gc-a26w-c\(w\):-:::::::*
jtekt	gc-a24_firmware	*	cpe:2.3:o:jtekt:gc-a24_firmware::::::::
jtekt	gc-a24	-	cpe:2.3:h:jtekt:gc-a24:-:::::::*
jtekt	gc-a24-m_firmware	*	cpe:2.3:o:jtekt:gc-a24-m_firmware::::::::
jtekt	gc-a24-m	-	cpe:2.3:h:jtekt:gc-a24-m:-:::::::*

Rows per page:

1-10 of 201

References

jvn.jp/en/jp/JVN34145838/

www.electronics.jtekt.co.jp/en/topics/202312116562/

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

34.9%

JSON

Related for NVD:CVE-2023-49140

prion1 cve1 cvelist1 jvn1