CVE-2023-1424: Denial-of-Service and Remote Code Execution Vulnerability in MELSEC Series CPU module
First published: Wed May 24 2023(Updated: )
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules allows a remote unauthenticated attacker to cause a denial of service (DoS) condition or execute malicious code on a target product by sending specially crafted packets. A system reset of the product is required for recovery from a denial of service (DoS) condition and malicious code execution.
Credit: Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mitsubishi Electric Melsec IQ-FX5U-32MR/DS Firmware | ||
| Mitsubishi Electric Melsec Iq-fx5u-32mr/ds | ||
| Mitsubishi Electric MELSEC IQ-FX5U-32MR/DSS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-32MR/DSS | ||
| Mitsubishi Electric Melsec IQ-FX5U-32MR/ES Firmware | ||
| Mitsubishi Electric Melsec Iq-FX5U-32MR/ES | ||
| Mitsubishielectric Melsec Iq-fx5u-32mr/ess Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-32MR/ESS | ||
| Mitsubishi Electric Melsec IQ-FX5U-32MT/DS Firmware | ||
| Mitsubishi Electric Melsec Iq-fx5u-32mt/ds | ||
| Mitsubishi Electric Melsec IQ-FX5U-32MT/DSS Firmware | ||
| Mitsubishi Electric Melsec Iq-FX5U-32MT/DSS | ||
| Mitsubishi Electric Melsec IQ-FX5U-32MT/ES Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-32MT/ES | ||
| Mitsubishi Electric Melsec IQ-FX5U-32MT/ESS Firmware | ||
| Mitsubishielectric Melsec Iq-fx5u-32mt/ess | ||
| Mitsubishi Electric Melsec IQ-FX5U-64MR/DS Firmware | ||
| Mitsubishi Electric Melsec Iq-FX5U-64MR/DS | ||
| Mitsubishielectric Melsec Iq-fx5u-64mr/dss Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-64MR/DSS | ||
| Mitsubishielectric Melsec Iq-fx5u-64mr/es Firmware | ||
| Mitsubishi Electric Melsec Iq-fx5u-64mr/es | ||
| Mitsubishi Electric Melsec IQ-FX5U-64MR/ESS Firmware | ||
| Mitsubishi Electric MELSEC iQ-FX5U-64MR/ESS | ||
| Mitsubishi Electric Melsec IQ-FX5U-64MT/DS Firmware | ||
| Mitsubishi Electric MELSEC iQ-FX5U-64MT/DS | ||
| Mitsubishi Electric Melsec IQ-FX5U-64MT/DSS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-64MT/DSS | ||
| Mitsubishi Electric Melsec IQ-FX5U-64MT/ES Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-64MT/ES | ||
| Mitsubishielectric Melsec Iq-fx5u-64mt/ess Firmware | ||
| Mitsubishi Electric Melsec Iq-FX5U-64MT/ESS | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MR/DS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MR/DS | ||
| Mitsubishielectric Melsec Iq-fx5u-80mr/dss Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MR/DSS | ||
| Mitsubishi Electric Melsec Iq-fx5u-80mr/es Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MR/ES | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MR/ESS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MR/ESS | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MT/DS Firmware | ||
| Mitsubishi Electric MELSEC IQ-FX5U-80MT/DS | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MT/DSS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MT/DSS | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MT/ES Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MT/ES | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MT/ESS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5U-80MT/ESS | ||
| Mitsubishielectric Melsec Iq-fx5uc-32mr/dds Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5UC-32MR/DDS | ||
| Mitsubishielectric Melsec Iq-fx5uc-32mr/ds Firmware | ||
| Mitsubishi Electric MELSEC iQ-FX5UC-32MR/DS | ||
| Mitsubishi Electric Melsec IQ-FX5UC-32MR/DS-TS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5UC-32MR/DS-TS | ||
| Mitsubishi Electric MELSEC IQ-FX5UC-32MT/DD Firmware | ||
| Mitsubishi Electric MELSEC IQ-FX5UC-32MT/DD Firmware | ||
| Mitsubishielectric Melsec Iq-fx5uc-32mt/ds Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5UC-32MT/DS | ||
| Mitsubishielectric Melsec Iq-fx5uc-32mt/dss-ts Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5UC-32MT/DSS-TS | ||
| Mitsubishi Electric Melsec IQ-FX5UC-32MT/DS-TS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5UC-32MT/DS-TS | ||
| Mitsubishielectric Melsec Iq-fx5uc-64mr/dds Firmware | ||
| Mitsubishi Electric Melsec iq-FX5UC-64MR/DDs | ||
| Mitsubishielectric Melsec Iq-fx5uc-64mr/ds Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5UC-64MR/DS | ||
| Mitsubishi Electric Melsec Iq-FX5UC-64MT/DDS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5UC-64MT/DDS | ||
| Mitsubishi Electric Melsec IQ-FX5UC-64MT/DS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5UC-64MT/DS | ||
| Mitsubishi Electric MELSEC IQ-FX5UC-96MR/DDS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5UC-96MR/DDS | ||
| Mitsubishi Electric Melsec IQ-FX5UC-96MR/DS Firmware | ||
| Mitsubishi Electric Melsec IQ-FX5UC-96MR/DS | ||
| Mitsubishielectric Melsec Iq-fx5uc-96mt/dds Firmware | ||
| Mitsubishi Electric Melsec Iq-fx5uc-96mt/dds | ||
| Mitsubishi Electric Melsec IQ-FX5UC-96MT/DS Firmware | ||
| Mitsubishi Electric Melsec Iq-fx5uc-96mt/ds |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-1424?
CVE-2023-1424 is classified as a high severity vulnerability due to its potential to cause denial of service and execute malicious code.
How do I fix CVE-2023-1424?
To mitigate CVE-2023-1424, it is recommended to update to the latest firmware provided by Mitsubishi Electric for the affected products.
Which devices are affected by CVE-2023-1424?
The CVE-2023-1424 vulnerability affects various Mitsubishi Electric MELSEC iQ-F Series CPU modules, including specific models of the FX5U and FX5UC series.
Can CVE-2023-1424 be exploited remotely?
Yes, CVE-2023-1424 can be exploited by a remote unauthenticated attacker, allowing them to leverage the vulnerability from outside the network.
What types of attacks can CVE-2023-1424 facilitate?
CVE-2023-1424 can facilitate denial of service (DoS) attacks or enable the execution of arbitrary code on vulnerable devices.
- collector/nvd-latest
- agent/references
- agent/type
- agent/description
- agent/softwarecombine
- agent/author
- agent/remedy
- agent/title
- agent/weakness
- agent/severity
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/mitsubishielectric
- canonical/mitsubishi electric melsec iq-fx5u-32mr/ds firmware
- canonical/mitsubishi electric melsec iq-fx5u-32mr/ds
- canonical/mitsubishi electric melsec iq-fx5u-32mr/dss firmware
- canonical/mitsubishi electric melsec iq-fx5u-32mr/dss
- canonical/mitsubishi electric melsec iq-fx5u-32mr/es firmware
- canonical/mitsubishi electric melsec iq-fx5u-32mr/es
- canonical/mitsubishielectric melsec iq-fx5u-32mr/ess firmware
- canonical/mitsubishi electric melsec iq-fx5u-32mr/ess
- canonical/mitsubishi electric melsec iq-fx5u-32mt/ds firmware
- canonical/mitsubishi electric melsec iq-fx5u-32mt/ds
- canonical/mitsubishi electric melsec iq-fx5u-32mt/dss firmware
- canonical/mitsubishi electric melsec iq-fx5u-32mt/dss
- canonical/mitsubishi electric melsec iq-fx5u-32mt/es firmware
- canonical/mitsubishi electric melsec iq-fx5u-32mt/es
- canonical/mitsubishi electric melsec iq-fx5u-32mt/ess firmware
- canonical/mitsubishielectric melsec iq-fx5u-32mt/ess
- canonical/mitsubishi electric melsec iq-fx5u-64mr/ds firmware
- canonical/mitsubishi electric melsec iq-fx5u-64mr/ds
- canonical/mitsubishielectric melsec iq-fx5u-64mr/dss firmware
- canonical/mitsubishi electric melsec iq-fx5u-64mr/dss
- canonical/mitsubishielectric melsec iq-fx5u-64mr/es firmware
- canonical/mitsubishi electric melsec iq-fx5u-64mr/es
- canonical/mitsubishi electric melsec iq-fx5u-64mr/ess firmware
- canonical/mitsubishi electric melsec iq-fx5u-64mr/ess
- canonical/mitsubishi electric melsec iq-fx5u-64mt/ds firmware
- canonical/mitsubishi electric melsec iq-fx5u-64mt/ds
- canonical/mitsubishi electric melsec iq-fx5u-64mt/dss firmware
- canonical/mitsubishi electric melsec iq-fx5u-64mt/dss
- canonical/mitsubishi electric melsec iq-fx5u-64mt/es firmware
- canonical/mitsubishi electric melsec iq-fx5u-64mt/es
- canonical/mitsubishielectric melsec iq-fx5u-64mt/ess firmware
- canonical/mitsubishi electric melsec iq-fx5u-64mt/ess
- canonical/mitsubishi electric melsec iq-fx5u-80mr/ds firmware
- canonical/mitsubishi electric melsec iq-fx5u-80mr/ds
- canonical/mitsubishielectric melsec iq-fx5u-80mr/dss firmware
- canonical/mitsubishi electric melsec iq-fx5u-80mr/dss
- canonical/mitsubishi electric melsec iq-fx5u-80mr/es firmware
- canonical/mitsubishi electric melsec iq-fx5u-80mr/es
- canonical/mitsubishi electric melsec iq-fx5u-80mr/ess firmware
- canonical/mitsubishi electric melsec iq-fx5u-80mr/ess
- canonical/mitsubishi electric melsec iq-fx5u-80mt/ds firmware
- canonical/mitsubishi electric melsec iq-fx5u-80mt/ds
- canonical/mitsubishi electric melsec iq-fx5u-80mt/dss firmware
- canonical/mitsubishi electric melsec iq-fx5u-80mt/dss
- canonical/mitsubishi electric melsec iq-fx5u-80mt/es firmware
- canonical/mitsubishi electric melsec iq-fx5u-80mt/es
- canonical/mitsubishi electric melsec iq-fx5u-80mt/ess firmware
- canonical/mitsubishi electric melsec iq-fx5u-80mt/ess
- canonical/mitsubishielectric melsec iq-fx5uc-32mr/dds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-32mr/dds
- canonical/mitsubishielectric melsec iq-fx5uc-32mr/ds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-32mr/ds
- canonical/mitsubishi electric melsec iq-fx5uc-32mr/ds-ts firmware
- canonical/mitsubishi electric melsec iq-fx5uc-32mr/ds-ts
- canonical/mitsubishi electric melsec iq-fx5uc-32mt/dd firmware
- canonical/mitsubishielectric melsec iq-fx5uc-32mt/ds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-32mt/ds
- canonical/mitsubishielectric melsec iq-fx5uc-32mt/dss-ts firmware
- canonical/mitsubishi electric melsec iq-fx5uc-32mt/dss-ts
- canonical/mitsubishi electric melsec iq-fx5uc-32mt/ds-ts firmware
- canonical/mitsubishi electric melsec iq-fx5uc-32mt/ds-ts
- canonical/mitsubishielectric melsec iq-fx5uc-64mr/dds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-64mr/dds
- canonical/mitsubishielectric melsec iq-fx5uc-64mr/ds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-64mr/ds
- canonical/mitsubishi electric melsec iq-fx5uc-64mt/dds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-64mt/dds
- canonical/mitsubishi electric melsec iq-fx5uc-64mt/ds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-64mt/ds
- canonical/mitsubishi electric melsec iq-fx5uc-96mr/dds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-96mr/dds
- canonical/mitsubishi electric melsec iq-fx5uc-96mr/ds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-96mr/ds
- canonical/mitsubishielectric melsec iq-fx5uc-96mt/dds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-96mt/dds
- canonical/mitsubishi electric melsec iq-fx5uc-96mt/ds firmware
- canonical/mitsubishi electric melsec iq-fx5uc-96mt/ds