Lucene search
MitsubishiVULNRICHMENT:CVE-2024-1915HistoryMar 15, 2024 - 12:00 a.m.
CVE-2024-1915
2024-03-1500:00:46
CWE-468
Mitsubishi
github.com
2
mitsubishi electric
melsec-q
melsec-l
pointer scaling
vulnerability
remote attacker
malicious code
specially crafted packet
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.5
Confidence
High
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially crafted packet.
ADP Affected
[
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_q-q03udecpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_q-q03udecpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_q-q04udehcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_q-q04udehcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_q-q06udehcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_q-q06udehcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_q-q10udehcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_q-q10udehcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_q-q13udehcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_q-q13udehcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_q-q20udehcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_q-q20udehcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_q-q26udehcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_q-q26udehcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_q-q50udehcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_q-q50udehcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_q-q100udehcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_q-q100udehcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishi:melsec_q03udvcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishi",
"product": "melsec_q03udvcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishi:melsec_q04udvcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishi",
"product": "melsec_q04udvcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishi:melsec_q06udvcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishi",
"product": "melsec_q06udvcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishi:melsec_q13udvcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishi",
"product": "melsec_q13udvcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishi:melsec_q26udvcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishi",
"product": "melsec_q26udvcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishi:melsec_q06udpvcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishi",
"product": "melsec_q06udpvcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishi:melsec_q13udpvcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishi",
"product": "melsec_q13udpvcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishi:melsec_q26udpvcpu:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishi",
"product": "melsec_q26udpvcpu",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26061",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:l02cpu-p:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "l02cpu-p",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26041",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishi:melsec_l06cpu\\(-p\\):-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishi",
"product": "melsec_l06cpu\\(-p\\)",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26041",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishi:melsec_l26cpu\\(-p\\):-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishi",
"product": "melsec_l26cpu\\(-p\\)",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26041",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_l02cpu-p:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_l02cpu-p",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26041",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_l06cpu-p:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_l06cpu-p",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26041",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_l26cpu-p:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_l26cpu-p",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26041",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:l26cpu-bt:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "l26cpu-bt",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26041",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:h:mitsubishielectric:melsec_l26cpu-pbt:-:*:*:*:*:*:*:*"
],
"vendor": "mitsubishielectric",
"product": "melsec_l26cpu-pbt",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "xxxxx26041",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]Related
cvelist
cvelist
CVE-2024-1915
2024-03-15 00:00:46
nvd
nvd
CVE-2024-1915
2024-03-15 01:15:58
cve
cve
CVE-2024-1915
2024-03-15 01:15:58
nessus
nessus
Mitsubishi MELSEC-Q/L Series Incorrect Pointer Scaling (CVE-2024-1915)
2024-04-21 00:00:00
ics
ics
Mitsubishi Electric MELSEC-Q/L Series (Update B)
2024-06-13 12:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.5
Confidence
High
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-1915