CVE-2022-33324
Published: Dec 23, 2022
Modified: Sep 5, 2024
CVSS v3.1
7.5
Description
Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU Firmware versions "32" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU Firmware versions "65" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R08/16/32/120SFCPU Firmware versions "29" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R08/16/32/120PSFCPU Firmware versions "08" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R12CCPU-V Firmware versions "17" and prior, Mitsubishi Electric Corporation MELSEC iQ-L Series L04/08/16/32HCPU Firmware versions "05" and prior and Mitsubishi Electric Corporation MELIPC Series MI5122-VW Firmware versions "07" and prior allows a remote unauthenticated attacker to cause a Denial of Service condition in Ethernet communication on the module by sending specially crafted packets. A system reset of the module is required for recovery.
| Vendor | Product | Versions |
|---|---|---|
Mitsubishi Electric Corporation | MELSEC iQ-R Series R00CPU | affected Firmware versions "32" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R01CPU | affected Firmware versions "32" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R02CPU | affected Firmware versions "32" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R04CPU | affected Firmware versions "65" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R08CPU | affected Firmware versions "65" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R16CPU | affected Firmware versions "65" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R32CPU | affected Firmware versions "65" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R120CPU | affected Firmware versions "65" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R04ENCPU | affected Firmware versions "65" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R08ENCPU | affected Firmware versions "65" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R16ENCPU | affected Firmware versions "65" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R32ENCPU | affected Firmware versions "65" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R120ENCPU | affected Firmware versions "65" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R08SFCPU | affected Firmware versions "29" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R16SFCPU | affected Firmware versions "29" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R32SFCPU | affected Firmware versions "29" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R120SFCPU | affected Firmware versions "29" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R12CCPU-V | affected Firmware versions "17" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-L Series L04HCPU | affected Firmware versions "05" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-L Series L08HCPU | affected Firmware versions "05" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-L Series L16HCPU | affected Firmware versions "05" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-L Series L32HCPU | affected Firmware versions "05" and prior |
Mitsubishi Electric Corporation | MELIPC Series MI5122-VW | affected Firmware versions "07" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R08PSFCPU | affected Firmware versions "08" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R16PSFCPU | affected Firmware versions "08" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R32PSFCPU | affected Firmware versions "08" and prior |
Mitsubishi Electric Corporation | MELSEC iQ-R Series R120PSFCPU | affected Firmware versions "08" and prior |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now