CVE-2023-5275

Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to cause a denial-of-service (DoS) condition on the function by sending specially crafted packets. However, the attacker would need to send the packets from within the same personal computer where the function is running.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mitsubishielectric:gx_works2:*:*:*:*:*:*:*:*

History

05 Dec 2023, 18:18

Type Values Removed Values Added
CPE cpe:2.3:a:mitsubishielectric:gx_works2:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 4.7
First Time Mitsubishielectric gx Works2
Mitsubishielectric
CWE CWE-20
References () https://jvn.jp/vu/JVNVU98760962/index.html - () https://jvn.jp/vu/JVNVU98760962/index.html - Third Party Advisory
References () https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-015_en.pdf - () https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-015_en.pdf - Vendor Advisory
References () https://www.cisa.gov/news-events/ics-advisories/icsa-23-331-03 - () https://www.cisa.gov/news-events/ics-advisories/icsa-23-331-03 - Third Party Advisory, US Government Resource

30 Nov 2023, 05:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-30 05:15

Updated : 2024-02-28 20:54


NVD link : CVE-2023-5275

Mitre link : CVE-2023-5275

CVE.ORG link : CVE-2023-5275


JSON object : View

Products Affected

mitsubishielectric

  • gx_works2
CWE
CWE-20

Improper Input Validation