CVE-2023-41963 - OpenCVE

Denial-of-service (DoS) vulnerability exists in FTP service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service (DoS) condition may occur.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Jtekt	Gc-a24 Firmware Gc-a25 Firmware Gc-a26w-c\(w\) Firmware Gc-a26w-c\(w\) Gc-a24 Gc-a28-c Gc-a28-c Firmware Gc-a24-m Firmware Gc-a26-j2 Firmware Gc-a24w-c\(w\) Gc-a26 Gc-a26-j2 Gc-a22w-cw Gc-a27-c Gc-a25 Gc-a26 Firmware Gc-a24w-c\(w\) Firmware Gc-a27-c Firmware Gc-a24-m Gc-a22w-cw Firmware

Configuration 1 [-]

AND

cpe:2.3:o:jtekt:gc-a22w-cw_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a22w-cw:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:jtekt:gc-a24w-c\(w\)_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a24w-c\(w\):-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:jtekt:gc-a26w-c\(w\)_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a26w-c\(w\):-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:jtekt:gc-a24_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a24:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:jtekt:gc-a24-m_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a24-m:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:jtekt:gc-a25_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a25:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:jtekt:gc-a26_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a26:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:jtekt:gc-a26-j2_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a26-j2:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:jtekt:gc-a27-c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a27-c:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:jtekt:gc-a28-c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a28-c:-:*:*:*:*:*:*:*

References

Link	Resource
https://jvn.jp/en/jp/JVN34145838/	Third Party Advisory
https://www.electronics.jtekt.co.jp/en/topics/202312116562/	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: jpcert

Published: 2023-12-12T09:16:04.421Z

Updated: 2023-12-12T09:16:04.421Z

Reserved: 2023-11-30T05:55:30.462Z

Link: CVE-2023-41963

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-12-12T10:15:10.253

Modified: 2023-12-14T20:41:34.697

Link: CVE-2023-41963

JSON object: View

Redhat Information

No data.

CWE

CWE-400