CVE-2019-6535
First published: Tue Jan 29 2019(Updated: )
Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet stack crash.
Credit: ics-cert@hq.dhs.gov ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Mitsubishi Electric Q03UDVCPU | <=20081 | |
| Mitsubishi Electric MELSEC-Q Q03/04/06/13/26UDVCPU | ||
| All of | ||
| Mitsubishi Electric Q04UDVCPU | <=20081 | |
| Mitsubishi Electric MELSEC-Q Q03/04/06/13/26UDVCPU | ||
| All of | ||
| Mitsubishi Electric Q06UDPVCPU Firmware | <=20081 | |
| Mitsubishi Electric MELSEC-Q Q03/04/06/13/26UDVCPU | ||
| All of | ||
| Mitsubishi Electric Q13U-DVCpu Firmware | <=20081 | |
| Mitsubishi Electric Q13U-DVCpu Firmware | ||
| All of | ||
| Mitsubishi Electric Q26UDVCPU | <=20081 | |
| Mitsubishi Electric MELSEC-Q Q03/04/06/13/26UDVCPU | ||
| All of | ||
| Mitsubishi Electric Q04UD PVC CPU Firmware | <=20081 | |
| Mitsubishi Electric Q04UDPVCPU | ||
| All of | ||
| Mitsubishi Electric Q06UDPVCPU Firmware | <=20081 | |
| Mitsubishi Electric Q06UDPVCPU Firmware | ||
| All of | ||
| Mitsubishi Electric Melsec Q-Q13UDPVCPU | <=20081 | |
| Mitsubishielectric Q13udpvcpu Firmware | ||
| All of | ||
| Mitsubishi Electric Q26udpvcpu Firmware | <=20081 | |
| Mitsubishi Electric Q26udpvcpu Firmware | ||
| All of | ||
| Mitsubishi Electric Melsec Q-Q03UDECPU Firmware | <=20101 | |
| Mitsubishi Electric Melsec Q03UDECPU | ||
| All of | ||
| Mitsubishi Electric Q Series CPU | <=20101 | |
| Mitsubishi Electric Q Series CPU | ||
| All of | ||
| Mitsubishi Electric Q06UDEHCPU Firmware | <=20101 | |
| Mitsubishi Electric Q06UDEHCPU Firmware | ||
| All of | ||
| Mitsubishi Electric Q10UDEHCPU Firmware | <=20101 | |
| Mitsubishi Electric Q10UDEHCPU Firmware | ||
| All of | ||
| Mitsubishielectric Q13udehcpu | <=20101 | |
| Mitsubishi Electric Q Series CPU | ||
| All of | ||
| Mitsubishi Electric Q20UDEHCPU | <=20101 | |
| Mitsubishi Electric Q20UDEHCPU | ||
| All of | ||
| Mitsubishi Electric Q26UDEHCPU Firmware | <=20101 | |
| Mitsubishi Electric Q26UDEHCPU Firmware | ||
| All of | ||
| Mitsubishi Electric Q50UDEHCPU Firmware | <=20101 | |
| Mitsubishi Electric Q50UDEHCPU Firmware | ||
| All of | ||
| Mitsubishi Electric Q100UDEHCPU | <=20101 | |
| Mitsubishi Electric Q Series CPU | ||
| Mitsubishi Electric Q03UDVCPU | <=20081 | |
| Mitsubishi Electric MELSEC-Q Q03/04/06/13/26UDVCPU | ||
| Mitsubishi Electric Q04UDVCPU | <=20081 | |
| Mitsubishi Electric MELSEC-Q Q03/04/06/13/26UDVCPU | ||
| Mitsubishi Electric Q06UDPVCPU Firmware | <=20081 | |
| Mitsubishi Electric MELSEC-Q Q03/04/06/13/26UDVCPU | ||
| Mitsubishi Electric Q13U-DVCpu Firmware | <=20081 | |
| Mitsubishi Electric Q13U-DVCpu Firmware | ||
| Mitsubishi Electric Q26UDVCPU | <=20081 | |
| Mitsubishi Electric MELSEC-Q Q03/04/06/13/26UDVCPU | ||
| Mitsubishi Electric Q04UD PVC CPU Firmware | <=20081 | |
| Mitsubishi Electric Q04UDPVCPU | ||
| Mitsubishi Electric Q06UDPVCPU Firmware | <=20081 | |
| Mitsubishi Electric Q06UDPVCPU Firmware | ||
| Mitsubishi Electric Melsec Q-Q13UDPVCPU | <=20081 | |
| Mitsubishielectric Q13udpvcpu Firmware | ||
| Mitsubishi Electric Q26udpvcpu Firmware | <=20081 | |
| Mitsubishi Electric Q26udpvcpu Firmware | ||
| Mitsubishi Electric Melsec Q-Q03UDECPU Firmware | <=20101 | |
| Mitsubishi Electric Melsec Q03UDECPU | ||
| Mitsubishi Electric Q Series CPU | <=20101 | |
| Mitsubishi Electric Q Series CPU | ||
| Mitsubishi Electric Q06UDEHCPU Firmware | <=20101 | |
| Mitsubishi Electric Q06UDEHCPU Firmware | ||
| Mitsubishi Electric Q10UDEHCPU Firmware | <=20101 | |
| Mitsubishi Electric Q10UDEHCPU Firmware | ||
| Mitsubishielectric Q13udehcpu | <=20101 | |
| Mitsubishi Electric Q Series CPU | ||
| Mitsubishi Electric Q20UDEHCPU | <=20101 | |
| Mitsubishi Electric Q20UDEHCPU | ||
| Mitsubishi Electric Q26UDEHCPU Firmware | <=20101 | |
| Mitsubishi Electric Q26UDEHCPU Firmware | ||
| Mitsubishi Electric Q50UDEHCPU Firmware | <=20101 | |
| Mitsubishi Electric Q50UDEHCPU Firmware | ||
| Mitsubishi Electric Q100UDEHCPU | <=20101 | |
| Mitsubishi Electric Q Series CPU |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Mitsubishi Electric vulnerability?
The vulnerability ID for this Mitsubishi Electric vulnerability is CVE-2019-6535.
What is the severity level of CVE-2019-6535?
CVE-2019-6535 has a severity level of 7.5 (high).
Which software versions are affected by CVE-2019-6535?
The affected software versions for CVE-2019-6535 are Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, Q03UDECPU, and Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior.
How can a remote attacker exploit CVE-2019-6535?
A remote attacker can exploit CVE-2019-6535 by sending specific bytes over Port 5007, which results in an Ethernet stack vulnerability.
Where can I find more information about CVE-2019-6535?
You can find more information about CVE-2019-6535 on the following websites: securityfocus.com and ics-cert.us-cert.gov.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/first-publish-date
- agent/description
- agent/author
- agent/last-modified-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/mitsubishielectric
- canonical/mitsubishi electric q03udvcpu
- version/mitsubishi electric q03udvcpu/20081
- canonical/mitsubishi electric melsec-q q03/04/06/13/26udvcpu
- canonical/mitsubishi electric q04udvcpu
- version/mitsubishi electric q04udvcpu/20081
- canonical/mitsubishi electric q06udpvcpu firmware
- version/mitsubishi electric q06udpvcpu firmware/20081
- canonical/mitsubishi electric q13u-dvcpu firmware
- version/mitsubishi electric q13u-dvcpu firmware/20081
- canonical/mitsubishi electric q26udvcpu
- version/mitsubishi electric q26udvcpu/20081
- canonical/mitsubishi electric q04ud pvc cpu firmware
- version/mitsubishi electric q04ud pvc cpu firmware/20081
- canonical/mitsubishi electric q04udpvcpu
- canonical/mitsubishi electric melsec q-q13udpvcpu
- version/mitsubishi electric melsec q-q13udpvcpu/20081
- canonical/mitsubishielectric q13udpvcpu firmware
- canonical/mitsubishi electric q26udpvcpu firmware
- version/mitsubishi electric q26udpvcpu firmware/20081
- canonical/mitsubishi electric melsec q-q03udecpu firmware
- version/mitsubishi electric melsec q-q03udecpu firmware/20101
- canonical/mitsubishi electric melsec q03udecpu
- canonical/mitsubishi electric q series cpu
- version/mitsubishi electric q series cpu/20101
- canonical/mitsubishi electric q06udehcpu firmware
- version/mitsubishi electric q06udehcpu firmware/20101
- canonical/mitsubishi electric q10udehcpu firmware
- version/mitsubishi electric q10udehcpu firmware/20101
- canonical/mitsubishielectric q13udehcpu
- version/mitsubishielectric q13udehcpu/20101
- canonical/mitsubishi electric q20udehcpu
- version/mitsubishi electric q20udehcpu/20101
- canonical/mitsubishi electric q26udehcpu firmware
- version/mitsubishi electric q26udehcpu firmware/20101
- canonical/mitsubishi electric q50udehcpu firmware
- version/mitsubishi electric q50udehcpu firmware/20101
- canonical/mitsubishi electric q100udehcpu
- version/mitsubishi electric q100udehcpu/20101