CVE-2022-24946

First published: Wed Jun 15 2022(Updated: )

Improper Resource Locking vulnerability in Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions "16" and prior, Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. "24061" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. "24061" and prior, Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions, Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions, Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions, Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number "24051" and prior and Mitsubishi Electric MELIPC Series MI5122-VW firmware versions "05" and prior allows a remote unauthenticated attacker to cause a denial of service (DoS) condition in Ethernet communications by sending specially crafted packets. A system reset of the products is required for recovery.

Credit: Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp

Affected Software	Affected Version	How to fix
Mitsubishielectric Q03udecpu Firmware
Mitsubishielectric Q03udecpu
Mitsubishielectric Q04udehcpu Firmware
Mitsubishielectric Q04udehcpu
Mitsubishielectric Q04udpvcpu Firmware
Mitsubishielectric Q04udpvcpu
Mitsubishielectric Q04udvcpu Firmware
Mitsubishielectric Q04udvcpu
Mitsubishielectric Q100udehcpu Firmware
Mitsubishielectric Q100udehcpu
Mitsubishielectric Q50udehcpu Firmware
Mitsubishielectric Q50udehcpu
Mitsubishielectric Q26dhccpu-ls Firmware
Mitsubishielectric Q26dhccpu-ls
Mitsubishielectric Q26udehcpu Firmware
Mitsubishielectric Q26udehcpu
Mitsubishielectric Q26udpvcpu Firmware
Mitsubishielectric Q26udpvcpu
Mitsubishielectric Q26udvcpu Firmware
Mitsubishielectric Q26udvcpu
Mitsubishielectric Q20udehcpu Firmware
Mitsubishielectric Q20udehcpu
Mitsubishielectric Q13udehcpu Firmware
Mitsubishielectric Q13udehcpu
Mitsubishielectric Q13udpvcpu Firmware
Mitsubishielectric Q13udpvcpu
Mitsubishielectric Q13udvcpu Firmware
Mitsubishielectric Q13udvcpu
Mitsubishielectric Q10udehcpu Firmware
Mitsubishielectric Q10udehcpu
Mitsubishielectric Q06ccpu-v Firmware
Mitsubishielectric Q06ccpu-v
Mitsubishielectric Q06phcpu Firmware
Mitsubishielectric Q06phcpu
Mitsubishielectric Q06udehcpu Firmware
Mitsubishielectric Q06udehcpu
Mitsubishielectric Q06udpvcpu Firmware
Mitsubishielectric Q06udpvcpu
Mitsubishielectric Q06udvcpu Firmware
Mitsubishielectric Q06udvcpu
Mitsubishielectric L02cpu Firmware
Mitsubishielectric L02cpu
Mitsubishielectric L02cpu-p Firmware
Mitsubishielectric L02cpu-p
Mitsubishielectric L02scpu Firmware
Mitsubishielectric L02scpu
Mitsubishielectric L02scpu-p Firmware
Mitsubishielectric L02scpu-p
Mitsubishielectric L06cpu Firmware
Mitsubishielectric L06cpu
Mitsubishielectric L06cpu-p Firmware
Mitsubishielectric L06cpu-p
Mitsubishielectric L26cpu Firmware
Mitsubishielectric L26cpu
Mitsubishielectric L26cpu-\(p\)bt Firmware
Mitsubishielectric L26cpu-\(p\)bt
Mitsubishielectric L26cpu-bt Firmware
Mitsubishielectric L26cpu-bt
Mitsubishielectric L26cpu-bt-cm Firmware
Mitsubishielectric L26cpu-bt-cm
Mitsubishielectric L26cpu-p Firmware
Mitsubishielectric L26cpu-p
Mitsubishielectric L26cpu-pbt Firmware
Mitsubishielectric L26cpu-pbt

CVE-2022-24946

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact