CVE-2022-33324
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU Firmware versions "32" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU Firmware versions "65" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R08/16/32/120SFCPU Firmware versions "29" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R08/16/32/120PSFCPU Firmware versions "08" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R12CCPU-V Firmware versions "17" and prior, Mitsubishi Electric Corporation MELSEC iQ-L Series L04/08/16/32HCPU Firmware versions "05" and prior and Mitsubishi Electric Corporation MELIPC Series MI5122-VW Firmware versions "07" and prior allows a remote unauthenticated attacker to cause a Denial of Service condition in Ethernet communication on the module by sending specially crafted packets. A system reset of the module is required for recovery.
Affected (19)
Products: Mitsubishi: Melsec Iq R R00 Cpu Firmware, Melsec Iq R R01 Cpu Firmware, Melsec Iq R R02 Cpu Firmware, Melsec Iq R R04 Cpu Firmware, Melsec Iq R R08 Cpu Firmware, Melsec Iq R R16 Cpu Firmware, Melsec Iq R R32 Cpu Firmware, Melsec Iq R R120 Cpu Firmware, Melsec Iq R R04 Sfcpu Firmware, Melsec Iq R R08 Sfcpu Firmware, Melsec Iq R R120 Sfcpu Firmware, Melsec Iq R R16 Sfcpu Firmware, Melsec Iq R R32 Sfcpu Firmware, Melsec Iq R R12 Ccpu V Firmware, Melipc Mi5122 Vw Firmware, Melsec Iq L L04 Hcpu Firmware, Melsec Iq L L08 Hcpu Firmware, Melsec Iq L L16 Hcpu Firmware, Melsec Iq L L32 Hcpu Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 33.0 |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R00 Cpu | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 33.0 |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R01 Cpu | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 33.0 |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R02 Cpu | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 66.0 |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R04 Cpu | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 66.0 |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R08 Cpu | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 66.0 |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R16 Cpu | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 66.0 |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R32 Cpu | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 66.0 |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R120 Cpu | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R04 Sfcpu | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R08 Sfcpu | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R120 Sfcpu | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R16 Sfcpu | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R32 Sfcpu | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq R R12 Ccpu V | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melipc Mi5122 Vw | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq L L04 Hcpu | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq L L08 Hcpu | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq L L16 Hcpu | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Mitsubishi Melsec Iq L L32 Hcpu | All versions |
References (6)
Source: Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp
Third Party Advisory
Source: Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp
PatchThird Party AdvisoryUS Government Resource
Source: Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.