cbcvebase.
CVE-2023-4699
published 2023-11-06

CVE-2023-4699: Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R…

PriorityP263critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
EPSS
0.75%
50.2th percentile
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELSEC iQ-L series, MELSEC Q series, MELSEC-L series, Mitsubishi Electric CNC M800V/M80V series, Mitsubishi Electric CNC M800/M80/E80 series and Mitsubishi Electric CNC M700V/M70V/E70 series allows a remote unauthenticated attacker to execute arbitrary commands by sending specific packets to the affected products. This could lead to disclose or tamper with information by reading or writing control programs, or cause a denial-of-service (DoS) condition on the products by resetting the memory contents of the products to factory settings or resetting the products remotely.

Affected

283 ranges· showing 25
VendorProductVersion rangeFixed in
mitsubishi_electric_corporationmelsec-f_series_fx3g-14mr_ds
mitsubishi_electric_corporationmelsec-f_series_fx3g-14mr_es
mitsubishi_electric_corporationmelsec-f_series_fx3g-14mr_es-a
mitsubishi_electric_corporationmelsec-f_series_fx3g-14mt_ds
mitsubishi_electric_corporationmelsec-f_series_fx3g-14mt_dss
mitsubishi_electric_corporationmelsec-f_series_fx3g-14mt_es
mitsubishi_electric_corporationmelsec-f_series_fx3g-14mt_es-a
mitsubishi_electric_corporationmelsec-f_series_fx3g-14mt_ess
mitsubishi_electric_corporationmelsec-f_series_fx3g-24mr_ds
mitsubishi_electric_corporationmelsec-f_series_fx3g-24mr_es
mitsubishi_electric_corporationmelsec-f_series_fx3g-24mr_es-a
mitsubishi_electric_corporationmelsec-f_series_fx3g-24mt_ds
mitsubishi_electric_corporationmelsec-f_series_fx3g-24mt_dss
mitsubishi_electric_corporationmelsec-f_series_fx3g-24mt_es
mitsubishi_electric_corporationmelsec-f_series_fx3g-24mt_es-a
mitsubishi_electric_corporationmelsec-f_series_fx3g-24mt_ess
mitsubishi_electric_corporationmelsec-f_series_fx3g-40mr_ds
mitsubishi_electric_corporationmelsec-f_series_fx3g-40mr_es
mitsubishi_electric_corporationmelsec-f_series_fx3g-40mr_es-a
mitsubishi_electric_corporationmelsec-f_series_fx3g-40mt_ds
mitsubishi_electric_corporationmelsec-f_series_fx3g-40mt_dss
mitsubishi_electric_corporationmelsec-f_series_fx3g-40mt_es
mitsubishi_electric_corporationmelsec-f_series_fx3g-40mt_es-a
mitsubishi_electric_corporationmelsec-f_series_fx3g-40mt_ess
mitsubishi_electric_corporationmelsec-f_series_fx3g-60mr_ds

Detection & IOCsextracted from sources · hover to see the quote

  • Detect unauthenticated remote exploitation attempts by monitoring for specific packets sent to Mitsubishi Electric MELSEC/CNC devices — the vulnerability allows arbitrary command execution via missing authentication on critical functions
  • Monitor for unauthorized read/write of control programs on MELSEC/CNC devices, which may indicate exploitation of CVE-2023-4699
  • Alert on unexpected factory resets or remote resets of MELSEC/CNC devices, which may indicate successful DoS exploitation of CVE-2023-4699
  • Flag any unauthenticated network sessions targeting MELSEC-F series CPU modules that are connected via Ethernet communication special adapter FX3U-ENET-ADP or Ethernet communication block FX3U-ENET(-L)
  • ·MELSEC-F series CPU modules are only affected when paired with specific Ethernet adapters; standalone units without these adapters are not affected
  • ·Some affected products are sold in limited regions; consult the Mitsubishi Electric advisory for region-specific applicability
  • ·All versions of the listed MELSEC-F series CPU modules are affected — there is no version-based exclusion for these products
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.