CVE-2024-22103

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-22103
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://jungo.com/windriver/versions/ Release Notes
https://www.cisa.gov/news-events/ics-advisories/icsa-24-135-04 Third Party Advisory US Government Resource
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-001_en.pdf Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:jungo:windriver:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:mitsubishielectric:cpu_module_logging_configuration_tool:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:cw_configurator:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:data_transfer:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:data_transfer_classic:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:ezsocket:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:fr_configurator_sw3:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:fr_configurator2:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:genesis64:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gt_got1000:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gt_got2000:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gt_softgot1000:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gt_softgot2000:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_developer:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_logviewer:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_works2:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_works3:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:iq_works:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:mi_configurator:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:mr_configurator:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:mr_configurator2:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:mx_component:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:mx_opc_server_da\/ua:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:numerical_control_device_communication:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:px_developer\/monitor_tool:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:rt_toolbox3:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:rt_visualbox:*:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:mitsubishielectric:mrzjw3-mc2-utl_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:mrzjw3-mc2-utl:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:mitsubishielectric:sw0dnc-mneth-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw0dnc-mneth-b:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:mitsubishielectric:sw1dnc-ccbd2-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnc-ccbd2-b:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:mitsubishielectric:sw1dnc-ccief-j_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnc-ccief-j:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:mitsubishielectric:sw1dnc-ccief-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnc-ccief-b:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:mitsubishielectric:sw1dnc-mnetg-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnc-mnetg-b:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:mitsubishielectric:sw1dnc-qsccf-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnc-qsccf-b:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:mitsubishielectric:sw1dnd-emsdk-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnd-emsdk-b:-:*:*:*:*:*:*:*
History

05 Jul 2024, 17:03

Type Values Removed Values Added
Summary
  • (es) La vulnerabilidad de escritura fuera de los límites en Jungo WinDriver anterior a 12.6.0 permite a atacantes locales provocar un error de pantalla azul de Windows y denegación de servicio (DoS).
CVSS v2 : unknown
v3 : 4.4 		v2 : unknown
v3 : 5.5
CPE cpe:2.3:o:mitsubishielectric:sw1dnc-mnetg-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:mr_configurator2:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:mx_opc_server_da\/ua:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gt_softgot2000:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw0dnc-mneth-b:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishielectric:sw0dnc-mneth-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:mrzjw3-mc2-utl:-:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:numerical_control_device_communication:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_developer:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnc-ccief-j:-:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:mr_configurator:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gt_softgot1000:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_logviewer:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:iq_works:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:cpu_module_logging_configuration_tool:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:rt_visualbox:*:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishielectric:mrzjw3-mc2-utl_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnc-mnetg-b:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishielectric:sw1dnc-qsccf-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnc-ccief-b:-:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:genesis64:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:fr_configurator2:*:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishielectric:sw1dnc-ccief-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnc-qsccf-b:-:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:mx_component:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:rt_toolbox3:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:cw_configurator:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:data_transfer:*:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishielectric:sw1dnc-ccief-j_firmware:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:px_developer\/monitor_tool:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:fr_configurator_sw3:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnc-ccbd2-b:-:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gt_got2000:*:*:*:*:*:*:*:*
cpe:2.3:a:jungo:windriver:*:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishielectric:sw1dnd-emsdk-b_firmware:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:data_transfer_classic:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_works3:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_works2:*:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:sw1dnd-emsdk-b:-:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gt_got1000:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:mi_configurator:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:ezsocket:*:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishielectric:sw1dnc-ccbd2-b_firmware:*:*:*:*:*:*:*:*
First Time Mitsubishielectric gx Works2
Mitsubishielectric sw1dnc-ccief-b
Mitsubishielectric mi Configurator
Mitsubishielectric sw1dnc-mnetg-b
Mitsubishielectric cpu Module Logging Configuration Tool
Mitsubishielectric sw1dnd-emsdk-b Firmware
Mitsubishielectric
Mitsubishielectric sw0dnc-mneth-b Firmware
Mitsubishielectric data Transfer Classic
Mitsubishielectric mx Component
Mitsubishielectric sw1dnc-ccief-j
Mitsubishielectric iq Works
Mitsubishielectric cw Configurator
Mitsubishielectric sw1dnc-qsccf-b Firmware
Mitsubishielectric gx Developer
Mitsubishielectric mr Configurator2
Mitsubishielectric sw0dnc-mneth-b
Mitsubishielectric fr Configurator Sw3
Mitsubishielectric fr Configurator2
Mitsubishielectric gt Softgot1000
Mitsubishielectric gx Works3
Mitsubishielectric gt Got2000
Mitsubishielectric sw1dnc-ccbd2-b
Mitsubishielectric rt Toolbox3
Mitsubishielectric rt Visualbox
Mitsubishielectric sw1dnc-ccbd2-b Firmware
Mitsubishielectric data Transfer
Mitsubishielectric genesis64
Mitsubishielectric sw1dnc-ccief-j Firmware
Mitsubishielectric mr Configurator
Mitsubishielectric sw1dnc-ccief-b Firmware
Mitsubishielectric ezsocket
Mitsubishielectric sw1dnc-qsccf-b
Mitsubishielectric px Developer\/monitor Tool
Mitsubishielectric mrzjw3-mc2-utl Firmware
Mitsubishielectric gt Softgot2000
Mitsubishielectric numerical Control Device Communication
Mitsubishielectric mrzjw3-mc2-utl
Mitsubishielectric sw1dnc-mnetg-b Firmware
Mitsubishielectric mx Opc Server Da\/ua
Mitsubishielectric sw1dnd-emsdk-b
Mitsubishielectric gx Logviewer
Jungo windriver
Jungo
Mitsubishielectric gt Got1000
References () https://jungo.com/windriver/versions/ - () https://jungo.com/windriver/versions/ - Release Notes
References () https://www.cisa.gov/news-events/ics-advisories/icsa-24-135-04 - () https://www.cisa.gov/news-events/ics-advisories/icsa-24-135-04 - Third Party Advisory, US Government Resource
References () https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-001_en.pdf - () https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-001_en.pdf - Third Party Advisory

03 Jul 2024, 01:47

Type Values Removed Values Added
CWE CWE-787
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 4.4

02 Jul 2024, 16:15

Type Values Removed Values Added
Summary (en) Out-of-Bounds Write vulnerability in Jungo WinDriver 12.6.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS). (en) Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).

02 Jul 2024, 15:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-07-02 15:15

Updated : 2024-07-05 17:03

NVD link : CVE-2024-22103

Mitre link : CVE-2024-22103

CVE.ORG link : CVE-2024-22103

JSON object : View

Products Affected

jungo

  • windriver

mitsubishielectric

  • mr_configurator2
  • data_transfer
  • mrzjw3-mc2-utl_firmware
  • sw1dnd-emsdk-b
  • mr_configurator
  • sw1dnc-mnetg-b
  • gt_softgot1000
  • gx_logviewer
  • sw1dnc-qsccf-b
  • sw1dnc-ccief-b_firmware
  • gt_got1000
  • gt_got2000
  • fr_configurator_sw3
  • px_developer\/monitor_tool
  • sw1dnc-mnetg-b_firmware
  • fr_configurator2
  • rt_visualbox
  • gx_works2
  • sw0dnc-mneth-b_firmware
  • sw1dnc-ccbd2-b
  • sw0dnc-mneth-b
  • sw1dnc-ccief-j_firmware
  • rt_toolbox3
  • cw_configurator
  • ezsocket
  • gx_developer
  • mrzjw3-mc2-utl
  • sw1dnc-qsccf-b_firmware
  • mi_configurator
  • numerical_control_device_communication
  • genesis64
  • sw1dnd-emsdk-b_firmware
  • mx_opc_server_da\/ua
  • gt_softgot2000
  • cpu_module_logging_configuration_tool
  • gx_works3
  • mx_component
  • data_transfer_classic
  • sw1dnc-ccief-j
  • sw1dnc-ccbd2-b_firmware
  • sw1dnc-ccief-b
  • iq_works
CWE
CWE-787

Out-of-bounds Write


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024