CVE-2022-40267 – Authentication Bypass Vulnerability in Web Server Function on MELSEC Series
https://notcve.org/view.php?id=CVE-2022-40267
Predictable Seed in Pseudo-Random Number Generator (PRNG) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DSS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/z (x=24,40,60, y=T,R, z=ES,ESS) versions 1.042 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/ES-A (x=24,40,60, y=T,R) versions 1.043 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5S-xMy/z (x=30,40,60,80, y=T,R, z=ES,ESS) versions 1.003 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MR/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU versions 33 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU versions 66 and prior allows a remote unauthenticated attacker to access the Web server function by guessing the random numbers used for authentication from several used random numbers. • https://jvn.jp/vu/JVNVU99673580/index.html https://www.cisa.gov/uscert/ics/advisories/icsa-23-017-02 https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-019_en.pdf • CWE-335: Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) CWE-337: Predictable Seed in Pseudo-Random Number Generator (PRNG) •
CVE-2022-40265 – Denial of Service (DoS) Vulnerability in MELSEC iQ-R Series Ethernet Interface Module
https://notcve.org/view.php?id=CVE-2022-40265
Improper Input Validation vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series RJ71EN71 Firmware version "65" and prior and Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120ENCPU Network Part Firmware version "65" and prior allows a remote unauthenticated attacker to cause a Denial of Service condition by sending specially crafted packets. A system reset is required for recovery. Vulnerabilidad de Validación de Entrada Incorrecta en Mitsubishi Electric Corporation MELSEC iQ-R Series RJ71EN71 Versión de firmware "65" y anteriores y Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120ENCPU Network Part Firmware versión "65" y anteriores permite una un atacante remoto no autenticado provoque una condición de Denegación de Servicio mediante el envío de paquetes especialmente manipulados. Es necesario reiniciar el sistema para la recuperación. • https://jvn.jp/vu/JVNVU94702422 https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-017_en.pdf • CWE-20: Improper Input Validation •
CVE-2020-5652
https://notcve.org/view.php?id=CVE-2020-5652
Uncontrolled resource consumption vulnerability in Ethernet Port on MELSEC iQ-R, Q and L series CPU modules (R 00/01/02 CPU firmware versions '20' and earlier, R 04/08/16/32/120 (EN) CPU firmware versions '52' and earlier, R 08/16/32/120 SFCPU firmware versions '22' and earlier, R 08/16/32/120 PCPU all versions, R 08/16/32/120 PSFCPU all versions, R 16/32/64 MTCPU all versions, Q03 UDECPU, Q 04/06/10/13/20/26/50/100 UDEHCPU serial number '22081' and earlier , Q 03/04/06/13/26 UDVCPU serial number '22031' and earlier, Q 04/06/13/26 UDPVCPU serial number '22031' and earlier, Q 172/173 DCPU all versions, Q 172/173 DSCPU all versions, Q 170 MCPU all versions, Q 170 MSCPU all versions, L 02/06/26 CPU (-P) and L 26 CPU - (P) BT all versions) allows a remote unauthenticated attacker to stop the Ethernet communication functions of the products via a specially crafted packet, which may lead to a denial of service (DoS) condition . Vulnerabilidad de consumo de recursos incontrolado en el Puerto Ethernet en módulos de CPU de las series MELSEC iQ-R, Q y L (versiones de firmware "20" y anteriores de CPU R 00/01/02, versiones firmware "52" y anteriores de CPU R 04/08/16/32/120 (EN), versiones de firmware "22" y anteriores de SFCPU R 08/16/32/120, todas las versiones de PCPU R 08/16/32/120, todas las versiones de PSFCPU R 08/16/32/120, todas las versiones MTCPU R 16/32/64, UDECPU Q03, número de serie "22081" y anterior de UDEHCPU Q 04/06/10/13/20/26/50/100, número de serie "22031" y anteriores de UDVCPU Q 03/04/06/13/26, número de serie "22031" y anteriores de UDPVCPU Q 04/06/13/26, todas las versiones de DCPU Q 172/173, todas las versiones de DSCPU Q 172/173, todas las versiones MCPU Q 170, todas las versiones de MSCPU Q 170,L 02/06/26 CPU (-P) y L 26 CPU - (P) BT todas las versiones), permite a un atacante remoto no autenticado detener las funciones de comunicación Ethernet de los productos por medio de un paquete especialmente diseñado, lo que puede conducir a la condición denegación de servicio (DoS) • https://jvn.jp/vu/JVNVU96558207/index.html https://www.mitsubishielectric.co.jp/psirt/vulnerability/pdf/2020-013.pdf https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2020-013_en.pdf • CWE-400: Uncontrolled Resource Consumption •
CVE-2020-5527
https://notcve.org/view.php?id=CVE-2020-5527
When MELSOFT transmission port (UDP/IP) of Mitsubishi Electric MELSEC iQ-R series (all versions), MELSEC iQ-F series (all versions), MELSEC Q series (all versions), MELSEC L series (all versions), and MELSEC F series (all versions) receives massive amount of data via unspecified vectors, resource consumption occurs and the port does not process the data properly. As a result, it may fall into a denial-of-service (DoS) condition. The vendor states this vulnerability only affects Ethernet communication functions. Cuando el puerto de transmisión de MELSOFT (UDP/IP) de la serie Mitsubishi Electric MELSEC iQ-R (todas las versiones), la serie MELSEC iQ-F (todas las versiones), la serie MELSEC Q (todas las versiones), la serie MELSEC L (todas las versiones) y la serie MELSEC F (todas las versiones), recibe una cantidad masiva de datos por medio de vectores no especificados, un consumo de recursos se presenta y el puerto no procesa los datos apropiadamente. Como resultado, puede caer en una condición de denegación de servicio (DoS). • https://jvn.jp/en/vu/JVNVU91553662/index.html https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2019-005_en.pdf • CWE-400: Uncontrolled Resource Consumption •