CVE-2023-4625: Denial-of-Service(DoS) Vulnerability in Web server function on MELSEC Series CPU module
First published: Mon Nov 06 2023(Updated: )
Improper Restriction of Excessive Authentication Attempts vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F/iQ-R Series CPU modules Web server function allows a remote unauthenticated attacker to prevent legitimate users from logging into the Web server function for a certain period after the attacker has attempted to log in illegally by continuously attempting unauthorized login to the Web server function. The impact of this vulnerability will persist while the attacker continues to attempt unauthorized login.
Credit: Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
| All of | ||
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-4625?
CVE-2023-4625 has a high severity rating due to its potential to allow remote unauthenticated attackers to disrupt legitimate access to the Mitsubishi MELSEC iQ-F/iQ-R Series CPUs' web server.
How do I fix CVE-2023-4625?
To fix CVE-2023-4625, apply the latest firmware update from Mitsubishi Electric that addresses this vulnerability.
What devices are affected by CVE-2023-4625?
CVE-2023-4625 affects Mitsubishi Electric MELSEC iQ-F/iQ-R Series CPU modules with specific firmware versions.
What type of attack does CVE-2023-4625 facilitate?
CVE-2023-4625 allows a remote unauthenticated attacker to execute excessive authentication attempts, potentially locking out legitimate users.
Is it safe to use devices affected by CVE-2023-4625 without a patch?
Using devices affected by CVE-2023-4625 without the necessary patch increases the risk of unauthorized access and operational disruption.
- agent/type
- agent/first-publish-date
- agent/title
- agent/weakness
- agent/severity
- agent/author
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/event
- agent/source
- vendor/mitsubishielectric
- canonical/mitsubishielectric fx5u-32mt\/es firmware
- canonical/mitsubishielectric fx5u-32mt\/es
- canonical/mitsubishielectric fx5u-64mt\/es firmware
- canonical/mitsubishielectric fx5u-64mt\/es
- canonical/mitsubishielectric fx5u-80mt\/es firmware
- canonical/mitsubishielectric fx5u-80mt\/es
- canonical/mitsubishielectric fx5u-32mr\/es firmware
- canonical/mitsubishielectric fx5u-32mr\/es
- canonical/mitsubishielectric fx5u-64mr\/es firmware
- canonical/mitsubishielectric fx5u-64mr\/es
- canonical/mitsubishielectric fx5u-80mr\/es firmware
- canonical/mitsubishielectric fx5u-80mr\/es
- canonical/mitsubishielectric fx5u-32mt\/ds firmware
- canonical/mitsubishielectric fx5u-32mt\/ds
- canonical/mitsubishielectric fx5u-64mt\/ds firmware
- canonical/mitsubishielectric fx5u-64mt\/ds
- canonical/mitsubishielectric fx5u-80mt\/ds firmware
- canonical/mitsubishielectric fx5u-80mt\/ds
- canonical/mitsubishielectric fx5u-32mr\/ds firmware
- canonical/mitsubishielectric fx5u-32mr\/ds
- canonical/mitsubishielectric fx5u-64mr\/ds firmware
- canonical/mitsubishielectric fx5u-64mr\/ds
- canonical/mitsubishielectric fx5u-80mr\/ds firmware
- canonical/mitsubishielectric fx5u-80mr\/ds
- canonical/mitsubishielectric fx5u-32mt\/ess firmware
- canonical/mitsubishielectric fx5u-32mt\/ess
- canonical/mitsubishielectric fx5u-64mt\/ess firmware
- canonical/mitsubishielectric fx5u-64mt\/ess
- canonical/mitsubishielectric fx5u-80mt\/ess firmware
- canonical/mitsubishielectric fx5u-80mt\/ess
- canonical/mitsubishielectric fx5u-32mt\/dss firmware
- canonical/mitsubishielectric fx5u-32mt\/dss
- canonical/mitsubishielectric fx5u-64mt\/dss firmware
- canonical/mitsubishielectric fx5u-64mt\/dss
- canonical/mitsubishielectric fx5u-80mt\/dss firmware
- canonical/mitsubishielectric fx5u-80mt\/dss
- canonical/mitsubishielectric fx5uc-32mt\/d firmware
- canonical/mitsubishielectric fx5uc-32mt\/d
- canonical/mitsubishielectric fx5uc-64mt\/d firmware
- canonical/mitsubishielectric fx5uc-64mt\/d
- canonical/mitsubishielectric fx5uc-96mt\/d firmware
- canonical/mitsubishielectric fx5uc-96mt\/d
- canonical/mitsubishielectric fx5uc-32mt\/dss firmware
- canonical/mitsubishielectric fx5uc-32mt\/dss
- canonical/mitsubishielectric fx5uc-64mt\/dss firmware
- canonical/mitsubishielectric fx5uc-64mt\/dss
- canonical/mitsubishielectric fx5uc-96mt\/dss firmware
- canonical/mitsubishielectric fx5uc-96mt\/dss
- canonical/mitsubishielectric fx5uc-32mt\/ds-ts firmware
- canonical/mitsubishielectric fx5uc-32mt\/ds-ts
- canonical/mitsubishielectric fx5uc-32mt\/dss-ts firmware
- canonical/mitsubishielectric fx5uc-32mt\/dss-ts
- canonical/mitsubishielectric fx5uc-32mr\/ds-ts firmware
- canonical/mitsubishielectric fx5uc-32mr\/ds-ts
- canonical/mitsubishielectric fx5uj-24mt\/es firmware
- canonical/mitsubishielectric fx5uj-24mt\/es
- canonical/mitsubishielectric fx5uj-40mt\/es firmware
- canonical/mitsubishielectric fx5uj-40mt\/es
- canonical/mitsubishielectric fx5uj-60mt\/es firmware
- canonical/mitsubishielectric fx5uj-60mt\/es
- canonical/mitsubishielectric fx5uj-24mr\/es firmware
- canonical/mitsubishielectric fx5uj-24mr\/es
- canonical/mitsubishielectric fx5uj-40mr\/es firmware
- canonical/mitsubishielectric fx5uj-40mr\/es
- canonical/mitsubishielectric fx5uj-60mr\/es firmware
- canonical/mitsubishielectric fx5uj-60mr\/es
- canonical/mitsubishielectric fx5uj-24mt\/ess firmware
- canonical/mitsubishielectric fx5uj-24mt\/ess
- canonical/mitsubishielectric fx5uj-40mt\/ess firmware
- canonical/mitsubishielectric fx5uj-40mt\/ess
- canonical/mitsubishielectric fx5uj-60mt\/ess firmware
- canonical/mitsubishielectric fx5uj-60mt\/ess
- canonical/mitsubishielectric fx5uj-24mt\/ds firmware
- canonical/mitsubishielectric fx5uj-24mt\/ds
- canonical/mitsubishielectric fx5uj-40mt\/ds firmware
- canonical/mitsubishielectric fx5uj-40mt\/ds
- canonical/mitsubishielectric fx5uj-60mt\/ds firmware
- canonical/mitsubishielectric fx5uj-60mt\/ds
- canonical/mitsubishielectric fx5uj-24mr\/ds firmware
- canonical/mitsubishielectric fx5uj-24mr\/ds
- canonical/mitsubishielectric fx5uj-40mr\/ds firmware
- canonical/mitsubishielectric fx5uj-40mr\/ds
- canonical/mitsubishielectric fx5uj-60mr\/ds firmware
- canonical/mitsubishielectric fx5uj-60mr\/ds
- canonical/mitsubishielectric fx5uj-24mt\/dss firmware
- canonical/mitsubishielectric fx5uj-24mt\/dss
- canonical/mitsubishielectric fx5uj-40mt\/dss firmware
- canonical/mitsubishielectric fx5uj-40mt\/dss
- canonical/mitsubishielectric fx5uj-60mt\/dss firmware
- canonical/mitsubishielectric fx5uj-60mt\/dss
- canonical/mitsubishielectric fx5uj-24mt\/es-a firmware
- canonical/mitsubishielectric fx5uj-24mt\/es-a
- canonical/mitsubishielectric fx5uj-40mt\/es-a firmware
- canonical/mitsubishielectric fx5uj-40mt\/es-a
- canonical/mitsubishielectric fx5uj-60mt\/es-a firmware
- canonical/mitsubishielectric fx5uj-60mt\/es-a
- canonical/mitsubishielectric fx5uj-24mr\/es-a firmware
- canonical/mitsubishielectric fx5uj-24mr\/es-a
- canonical/mitsubishielectric fx5uj-40mr\/es-a firmware
- canonical/mitsubishielectric fx5uj-40mr\/es-a
- canonical/mitsubishielectric fx5uj-60mr\/es-a firmware
- canonical/mitsubishielectric fx5uj-60mr\/es-a
- canonical/mitsubishielectric fx5s-30mt\/es firmware
- canonical/mitsubishielectric fx5s-30mt\/es
- canonical/mitsubishielectric fx5s-40mt\/es firmware
- canonical/mitsubishielectric fx5s-40mt\/es
- canonical/mitsubishielectric fx5s-60mt\/es firmware
- canonical/mitsubishielectric fx5s-60mt\/es
- canonical/mitsubishielectric fx5s-80mt\/es firmware
- canonical/mitsubishielectric fx5s-80mt\/es
- canonical/mitsubishielectric fx5s-30mr\/es firmware
- canonical/mitsubishielectric fx5s-30mr\/es
- canonical/mitsubishielectric fx5s-40mr\/es firmware
- canonical/mitsubishielectric fx5s-40mr\/es
- canonical/mitsubishielectric fx5s-60mr\/es firmware
- canonical/mitsubishielectric fx5s-60mr\/es
- canonical/mitsubishielectric fx5s-80mr\/es firmware
- canonical/mitsubishielectric fx5s-80mr\/es
- canonical/mitsubishielectric fx5s-30mt\/ess firmware
- canonical/mitsubishielectric fx5s-30mt\/ess
- canonical/mitsubishielectric fx5s-40mt\/ess firmware
- canonical/mitsubishielectric fx5s-40mt\/ess
- canonical/mitsubishielectric fx5s-60mt\/ess firmware
- canonical/mitsubishielectric fx5s-60mt\/ess
- canonical/mitsubishielectric fx5s-80mt\/ess firmware
- canonical/mitsubishielectric fx5s-80mt\/ess