CRITICAL🇵🇱 Wersja polska

CVE-2023-4699

CVSS 10.0v3.1pub. 2023-11-06upd. 2025-03-17

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELSEC iQ-L series, MELSEC Q series, MELSEC-L series, Mitsubishi Electric CNC M800V/M80V series, Mitsubishi Electric CNC M800/M80/E80 series and Mitsubishi Electric CNC M700V/M70V/E70 series allows a remote unauthenticated attacker to execute arbitrary commands by sending specific packets to the affected products. This could lead to disclose or tamper with information by reading or writing control programs, or cause a denial-of-service (DoS) condition on the products by resetting the memory contents of the products to factory settings or resetting the products remotely.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Mitsubishielectric Fx3u 128mr\/ds

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mr\/ds Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mr\/es

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mr\/es Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mt\/ds

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mt\/ds Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mt\/dss

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mt\/dss Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mt\/e

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mt\/e Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mt\/es A

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mt\/es A Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mt\/ess

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 128mt\/ess Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mr\/ds

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mr\/ds Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mr\/es

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mr\/es A

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mr\/es A Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mr\/es Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mt\/ds

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mt\/ds Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mt\/dss

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mt\/dss Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mt\/es

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mt\/es A

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mt\/es A Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mt\/es Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mt\/ess

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Fx3u 16mt\/ess Firmware

    OS
    Mitsubishielectric
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2023-2846HIGH7.5ten sam produkt

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series ma...

CVE-2023-6943CRITICAL9.8PL ✓ten sam vendor

Unsafe Reflection w oprogramowaniu Mitsubishi Electric — zdalne wykonanie kodu

CVE-2023-4562CRITICAL9.1ten sam vendor

Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a...

CVE-2023-4088CRITICAL9.3ten sam vendor

Incorrect Default Permissions vulnerability in Mitsubishi Electric Corporation multiple FA engineering softwar...

CVE-2023-3346CRITICAL9.8ten sam vendor

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series a...