CVE-2023-3346
published 2023-08-03CVE-2023-3346: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause…
PriorityP262critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.67%
73.9th percentile
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition and execute arbitrary code on the product by sending specially crafted packets. In addition, system reset is required for recovery.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mitsubishi_electric_corporation | mitsubishi_cnc_c80_series_c80 | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_e70_series_e70 | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_e80_series_e80 | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_iot_unit_data_acquisition_unit | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_iot_unit_remote_service_gateway_unit | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m700v_series_m720vs | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m700v_series_m720vw | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m700v_series_m730vs | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m700v_series_m730vw | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m700v_series_m750vs | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m700v_series_m750vw | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m70v_series_m70v | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m800_series_m800s | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m800_series_m800w | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m800v_series_m800vs | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m800v_series_m800vw | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m80_series_m80 | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m80_series_m80w | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m80v_series_m80v | — | — |
| mitsubishi_electric_corporation | mitsubishi_cnc_m80v_series_m80vw | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Trigger condition: remote unauthenticated attacker sends specially crafted packets to cause buffer overflow (CWE-120) on Mitsubishi Electric CNC Series devices, enabling DoS and arbitrary code execution ↗
- →No authentication required and low attack complexity — network-facing CNC devices should be monitored for unexpected or malformed inbound packet traffic ↗
- →No known public exploits exist as of advisory publication; monitor for novel exploit attempts targeting Mitsubishi CNC network services ↗
- ·Data Acquisition Unit (BND-2041W002-**) has NO fixed version available — all versions remain affected ↗
- ·Exploitation requires a system reset for recovery — standard service restart is insufficient for remediation after a successful attack ↗
- ·Attack vector is network (AV:N), no privileges required (PR:N), no user interaction (UI:N) — CVSS v3 base score 9.8; all network-exposed CNC devices should be treated as critical risk ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Mitsubishi Electric CNC Series (Update E)
cisa_ics·2024-01-30·CVSS 9.8
[CRITICAL] Mitsubishi Electric CNC Series (Update E)
ICS Advisory
##
Mitsubishi Electric CNC Series (Update E)
Last RevisedJanuary 30, 2024
Alert CodeICSA-23-208-03
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Mitsubishi Electric
- Equipment: CNC Series devices
- Vulnerability: Classic Buffer Overflow
## 2. RISK EVALUATION
Successful exploitation of this vulnerability could allow a malicious remote attacker to cause a denial-of-service condition and execute malicious code on the product by sending specially crafted packets. System reset is required for recovery.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following Mitsubishi Electric CNC series products are affected:
- M800VW (BND-2051W000-**): Versions A8 and prior
- M800VS (BND-2052W0
GHSA
GHSA-whh9-m2fc-3q2v: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker
ghsa_unreviewed·2023-08-03
CVE-2023-3346 [CRITICAL] CWE-120 GHSA-whh9-m2fc-3q2v: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition and execute arbitrary code on the product by sending specially crafted packets. In addition, system reset is required for recovery.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://jvn.jp/vu/JVNVU90352157/index.htmlhttps://www.cisa.gov/news-events/ics-advisories/icsa-23-208-03https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-007_en.pdfhttps://jvn.jp/vu/JVNVU90352157/index.htmlhttps://www.cisa.gov/news-events/ics-advisories/icsa-23-208-03https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-007_en.pdf
2023-08-03
Published