CVE-2023-4699
published 2023-11-06CVE-2023-4699: Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R…
PriorityP263critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
EPSS
0.75%
50.2th percentile
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELSEC iQ-L series, MELSEC Q series, MELSEC-L series, Mitsubishi Electric CNC M800V/M80V series, Mitsubishi Electric CNC M800/M80/E80 series and Mitsubishi Electric CNC M700V/M70V/E70 series allows a remote unauthenticated attacker to execute arbitrary commands by sending specific packets to the affected products. This could lead to disclose or tamper with information by reading or writing control programs, or cause a denial-of-service (DoS) condition on the products by resetting the memory contents of the products to factory settings or resetting the products remotely.
Affected
283 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mitsubishi_electric_corporation | melsec-f_series_fx3g-14mr_ds | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-14mr_es | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-14mr_es-a | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-14mt_ds | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-14mt_dss | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-14mt_es | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-14mt_es-a | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-14mt_ess | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-24mr_ds | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-24mr_es | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-24mr_es-a | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-24mt_ds | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-24mt_dss | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-24mt_es | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-24mt_es-a | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-24mt_ess | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-40mr_ds | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-40mr_es | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-40mr_es-a | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-40mt_ds | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-40mt_dss | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-40mt_es | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-40mt_es-a | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-40mt_ess | — | — |
| mitsubishi_electric_corporation | melsec-f_series_fx3g-60mr_ds | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect unauthenticated remote exploitation attempts by monitoring for specific packets sent to Mitsubishi Electric MELSEC/CNC devices — the vulnerability allows arbitrary command execution via missing authentication on critical functions ↗
- →Monitor for unauthorized read/write of control programs on MELSEC/CNC devices, which may indicate exploitation of CVE-2023-4699 ↗
- →Alert on unexpected factory resets or remote resets of MELSEC/CNC devices, which may indicate successful DoS exploitation of CVE-2023-4699 ↗
- →Flag any unauthenticated network sessions targeting MELSEC-F series CPU modules that are connected via Ethernet communication special adapter FX3U-ENET-ADP or Ethernet communication block FX3U-ENET(-L) ↗
- ·MELSEC-F series CPU modules are only affected when paired with specific Ethernet adapters; standalone units without these adapters are not affected ↗
- ·Some affected products are sold in limited regions; consult the Mitsubishi Electric advisory for region-specific applicability ↗
- ·All versions of the listed MELSEC-F series CPU modules are affected — there is no version-based exclusion for these products ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-q8jx-8wr3-gv52: Insufficient Verification of Data Authenticity vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules and MELSEC iQ-F Series CP
ghsa_unreviewed·2023-11-06
CVE-2023-4699 [CRITICAL] CWE-306 GHSA-q8jx-8wr3-gv52: Insufficient Verification of Data Authenticity vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules and MELSEC iQ-F Series CP
Insufficient Verification of Data Authenticity vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules and MELSEC iQ-F Series CPU modules allows a remote unauthenticated attacker to reset the memory of the products to factory default state and cause denial-of-service (DoS) condition on the products by sending specific packets.
CISA ICS
Mitsubishi Electric MELSEC Series (Update A)
cisa_ics·2024-11-12
Mitsubishi Electric MELSEC Series (Update A)
ICS Advisory
##
Mitsubishi Electric MELSEC Series (Update A)
Last RevisedNovember 12, 2024
Alert CodeICSA-23-306-03
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v3 10.0
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Mitsubishi Electric Corporation
- Equipment: FA products
- Vulnerability: Missing Authentication for Critical Function
## 2. RISK EVALUATION
Successful exploitation of this vulnerability may allow a remote attacker to execute arbitrary commands by sending specific packets to the affected products.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
Mitsubishi Electric reports that the following FA products are affected.
However, MELSEC-F seri
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://jvn.jp/vu/JVNVU94620134/https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-03https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-013_en.pdfhttps://jvn.jp/vu/JVNVU94620134/https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-03https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-013_en.pdf
2023-11-06
Published