CVE-2023-49143 - OpenCVE

Denial-of-service (DoS) vulnerability exists in rfe service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service (DoS) condition may occur.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Jtekt	Gc-a24 Firmware Gc-a25 Firmware Gc-a26w-c\(w\) Firmware Gc-a26w-c\(w\) Gc-a24 Gc-a28-c Gc-a28-c Firmware Gc-a24-m Firmware Gc-a26-j2 Firmware Gc-a24w-c\(w\) Gc-a26 Gc-a26-j2 Gc-a22w-cw Gc-a27-c Gc-a25 Gc-a26 Firmware Gc-a24w-c\(w\) Firmware Gc-a27-c Firmware Gc-a24-m Gc-a22w-cw Firmware

Configuration 1 [-]

AND

cpe:2.3:o:jtekt:gc-a22w-cw_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a22w-cw:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:jtekt:gc-a24w-c\(w\)_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a24w-c\(w\):-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:jtekt:gc-a26w-c\(w\)_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a26w-c\(w\):-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:jtekt:gc-a24_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a24:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:jtekt:gc-a24-m_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a24-m:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:jtekt:gc-a25_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a25:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:jtekt:gc-a26_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a26:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:jtekt:gc-a26-j2_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a26-j2:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:jtekt:gc-a27-c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a27-c:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:jtekt:gc-a28-c_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:jtekt:gc-a28-c:-:*:*:*:*:*:*:*

References

Link	Resource
https://jvn.jp/en/jp/JVN34145838/	Third Party Advisory
https://www.electronics.jtekt.co.jp/en/topics/202312116562/	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: jpcert

Published: 2023-12-12T09:16:20.067Z

Updated: 2023-12-12T09:16:20.067Z

Reserved: 2023-11-30T05:55:32.224Z

Link: CVE-2023-49143

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-12-12T10:15:10.373

Modified: 2023-12-15T13:46:23.807

Link: CVE-2023-49143

JSON object: View

Redhat Information

No data.

CWE

CWE-400