Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU Firmware versions "32" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU Firmware versions "65" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R08/16/32/120SFCPU Firmware versions "29" and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R12CCPU-V Firmware versions "17" and prior, Mitsubishi Electric Corporation MELSEC iQ-L Series L04/08/16/32HCPU all versions and Mitsubishi Electric Corporation MELIPC Series MI5122-VW Firmware versions "07" and prior allows a remote unauthenticated attacker to cause a Denial of Service condition in Ethernet communication on the module by sending specially crafted packets. A system reset of the module is required for recovery.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
Mitsubishi
  • Melsec Iq-r R32 Cpu Firmware
  • Melsec Iq-r R02 Cpu
  • Melsec Iq-r R32 Sfcpu Firmware
  • Melsec Iq-r R12 Ccpu-v
  • Melsec Iq-r R16 Sfcpu Firmware
  • Melsec Iq-r R12 Ccpu-v Firmware
  • Melipc Mi5122-vw
  • Melsec Iq-r R04 Cpu Firmware
  • Melsec Iq-r R08 Cpu
  • Melsec Iq-r R16 Cpu
  • Melsec Iq-r R08 Cpu Firmware
  • Melsec Iq-l L16 Hcpu
  • Melsec Iq-r R02 Cpu Firmware
  • Melsec Iq-l L04 Hcpu
  • Melsec Iq-r R04 Sfcpu
  • Melsec Iq-r R00 Cpu
  • Melsec Iq-l L32 Hcpu
  • Melsec Iq-r R120 Sfcpu Firmware
  • Melsec Iq-r R04 Sfcpu Firmware
  • Melsec Iq-r R04 Cpu
  • Melsec Iq-r R120 Sfcpu
  • Melsec Iq-l L08 Hcpu
  • Melsec Iq-r R120 Cpu
  • Melsec Iq-r R32 Cpu
  • Melipc Mi5122-vw Firmware
  • Melsec Iq-l L16 Hcpu Firmware
  • Melsec Iq-r R00 Cpu Firmware
  • Melsec Iq-r R32 Sfcpu
  • Melsec Iq-r R120 Cpu Firmware
  • Melsec Iq-l L32 Hcpu Firmware
  • Melsec Iq-r R08 Sfcpu Firmware
  • Melsec Iq-r R16 Sfcpu
  • Melsec Iq-r R01 Cpu
  • Melsec Iq-r R01 Cpu Firmware
  • Melsec Iq-l L04 Hcpu Firmware
  • Melsec Iq-r R16 Cpu Firmware
  • Melsec Iq-l L08 Hcpu Firmware
  • Melsec Iq-r R08 Sfcpu

Configuration 1 [-]

AND
cpe:2.3:h:mitsubishi:melsec_iq-r_r00_cpu:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:melsec_iq-r_r00_cpu_firmware:*:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:h:mitsubishi:melsec_iq-r_r01_cpu:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:melsec_iq-r_r01_cpu_firmware:*:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:h:mitsubishi:melsec_iq-r_r02_cpu:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:melsec_iq-r_r02_cpu_firmware:*:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:h:mitsubishi:melsec_iq-r_r04_cpu:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:melsec_iq-r_r04_cpu_firmware:*:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:h:mitsubishi:melsec_iq-r_r08_cpu:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:melsec_iq-r_r08_cpu_firmware:*:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:h:mitsubishi:melsec_iq-r_r16_cpu:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:melsec_iq-r_r16_cpu_firmware:*:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:h:mitsubishi:melsec_iq-r_r32_cpu:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:melsec_iq-r_r32_cpu_firmware:*:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:h:mitsubishi:melsec_iq-r_r120_cpu:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:melsec_iq-r_r120_cpu_firmware:*:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:mitsubishi:melsec_iq-r_r04_sfcpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melsec_iq-r_r04_sfcpu:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:mitsubishi:melsec_iq-r_r08_sfcpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melsec_iq-r_r08_sfcpu:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:mitsubishi:melsec_iq-r_r120_sfcpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melsec_iq-r_r120_sfcpu:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:mitsubishi:melsec_iq-r_r16_sfcpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melsec_iq-r_r16_sfcpu:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:mitsubishi:melsec_iq-r_r32_sfcpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melsec_iq-r_r32_sfcpu:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:mitsubishi:melsec_iq-r_r12_ccpu-v_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melsec_iq-r_r12_ccpu-v:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:mitsubishi:melipc_mi5122-vw_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melipc_mi5122-vw:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:o:mitsubishi:melsec_iq-l_l04_hcpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melsec_iq-l_l04_hcpu:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND
cpe:2.3:o:mitsubishi:melsec_iq-l_l08_hcpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melsec_iq-l_l08_hcpu:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND
cpe:2.3:o:mitsubishi:melsec_iq-l_l16_hcpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melsec_iq-l_l16_hcpu:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND
cpe:2.3:o:mitsubishi:melsec_iq-l_l32_hcpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishi:melsec_iq-l_l32_hcpu:-:*:*:*:*:*:*:*
References
Link Resource
https://jvn.jp/vu/JVNVU96883262 Third Party Advisory
https://www.cisa.gov/uscert/ics/advisories/icsa-22-356-03 Patch Third Party Advisory US Government Resource
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-018_en.pdf Vendor Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: Mitsubishi

Published: 2022-12-23T02:24:15.274Z

Updated: 2024-07-04T09:22:06.953Z

Reserved: 2022-06-14T17:50:53.644Z

Link: CVE-2022-33324

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2022-12-23T03:15:08.723

Modified: 2024-05-30T10:15:08.703

Link: CVE-2022-33324

JSON object: View

cve-icon Redhat Information

No data.

CWE