#VU86863 Insufficient Resource Pool in Mitsubishi Electric products - CVE-2023-7033
Published: February 28, 2024
Vulnerability identifier: #VU86863
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2023-7033
CWE-ID: CWE-410
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
MELSEC iQ-F FX5U-32MT/ES
MELSEC iQ-F FX5U-32MT/DS
MELSEC iQ-F FX5U-32MT/ESS
MELSEC iQ-F FX5U-32MT/DSS
MELSEC iQ-F FX5U-32MR/ES
MELSEC iQ-F FX5U-32MR/DS
MELSEC iQ-F FX5U-64MT/ES
MELSEC iQ-F FX5U-64MT/ESS
MELSEC iQ-F FX5U-64MT/DS
MELSEC iQ-F FX5U-64MT/DSS
MELSEC iQ-F FX5U-64MR/ES
MELSEC iQ-F FX5U-64MR/DS
MELSEC iQ-F FX5U-80MT/ES
MELSEC iQ-F FX5U-80MT/DS
MELSEC iQ-F FX5U-80MT/ESS
MELSEC iQ-F FX5U-80MT/DSS
MELSEC iQ-F FX5U-80MR/ES
MELSEC iQ-F FX5U-80MR/DS
MELSEC iQ-F FX5UC-32MT/D
MELSEC iQ-F FX5UC-32MT/DSS
MELSEC iQ-F FX5UC-64MT/D
MELSEC iQ-F FX5UC-64MT/DSS
MELSEC iQ-F FX5UC-96MT/D
MELSEC iQ-F FX5UC-96MT/DSS
MELSEC iQ-F FX5UC-32MT/DS-TS
MELSEC iQ-F FX5UC-32MT/DSS-TS
MELSEC iQ-F FX5UC-32MR/DS-TS
MELSEC iQ-F FX5UJ-24MT/ES
MELSEC iQ-F FX5UJ-24MT/DS
MELSEC iQ-F FX5UJ-24MT/ESS
MELSEC iQ-F FX5UJ-24MT/DSS
MELSEC iQ-F FX5UJ-24MR/ES
MELSEC iQ-F FX5UJ-24MR/DS
MELSEC iQ-F FX5UJ-40MT/ES
MELSEC iQ-F FX5UJ-40MT/DS
MELSEC iQ-F FX5UJ-40MT/ESS
MELSEC iQ-F FX5UJ-40MT/DSS
MELSEC iQ-F FX5UJ-40MR/ES
MELSEC iQ-F FX5UJ-40MR/DS
MELSEC iQ-F FX5UJ-60MT/ES
MELSEC iQ-F FX5UJ-60MT/DS
MELSEC iQ-F FX5UJ-60MT/ESS
MELSEC iQ-F FX5UJ-60MT/DSS
MELSEC iQ-F FX5UJ-60MR/ES
MELSEC iQ-F FX5UJ-60MR/DS
MELSEC iQ-F FX5UJ-24MT/ES-A
MELSEC iQ-F FX5UJ-24MR/ES-A
MELSEC iQ-F FX5UJ-40MT/ES-A
MELSEC iQ-F FX5UJ-40MR/ES-A
MELSEC iQ-F FX5UJ-60MT/ES-A
MELSEC iQ-F FX5UJ-60MR/ES-A
MELSEC iQ-F FX5S-30MT/ES
MELSEC iQ-F FX5S-30MT/ESS
MELSEC iQ-F FX5S-30MR/ES
MELSEC iQ-F FX5S-40MT/ES
MELSEC iQ-F FX5S-40MT/ESS
MELSEC iQ-F FX5S-40MR/ES
MELSEC iQ-F FX5S-60MT/ES
MELSEC iQ-F FX5S-60MT/ESS
MELSEC iQ-F FX5S-60MR/ES
MELSEC iQ-F FX5S-80*MT/ES
MELSEC iQ-F FX5S-80*MT/ESS
MELSEC iQ-F FX5S-80*MR/ES
MELSEC iQ-F FX5U-32MT/ES
MELSEC iQ-F FX5U-32MT/DS
MELSEC iQ-F FX5U-32MT/ESS
MELSEC iQ-F FX5U-32MT/DSS
MELSEC iQ-F FX5U-32MR/ES
MELSEC iQ-F FX5U-32MR/DS
MELSEC iQ-F FX5U-64MT/ES
MELSEC iQ-F FX5U-64MT/ESS
MELSEC iQ-F FX5U-64MT/DS
MELSEC iQ-F FX5U-64MT/DSS
MELSEC iQ-F FX5U-64MR/ES
MELSEC iQ-F FX5U-64MR/DS
MELSEC iQ-F FX5U-80MT/ES
MELSEC iQ-F FX5U-80MT/DS
MELSEC iQ-F FX5U-80MT/ESS
MELSEC iQ-F FX5U-80MT/DSS
MELSEC iQ-F FX5U-80MR/ES
MELSEC iQ-F FX5U-80MR/DS
MELSEC iQ-F FX5UC-32MT/D
MELSEC iQ-F FX5UC-32MT/DSS
MELSEC iQ-F FX5UC-64MT/D
MELSEC iQ-F FX5UC-64MT/DSS
MELSEC iQ-F FX5UC-96MT/D
MELSEC iQ-F FX5UC-96MT/DSS
MELSEC iQ-F FX5UC-32MT/DS-TS
MELSEC iQ-F FX5UC-32MT/DSS-TS
MELSEC iQ-F FX5UC-32MR/DS-TS
MELSEC iQ-F FX5UJ-24MT/ES
MELSEC iQ-F FX5UJ-24MT/DS
MELSEC iQ-F FX5UJ-24MT/ESS
MELSEC iQ-F FX5UJ-24MT/DSS
MELSEC iQ-F FX5UJ-24MR/ES
MELSEC iQ-F FX5UJ-24MR/DS
MELSEC iQ-F FX5UJ-40MT/ES
MELSEC iQ-F FX5UJ-40MT/DS
MELSEC iQ-F FX5UJ-40MT/ESS
MELSEC iQ-F FX5UJ-40MT/DSS
MELSEC iQ-F FX5UJ-40MR/ES
MELSEC iQ-F FX5UJ-40MR/DS
MELSEC iQ-F FX5UJ-60MT/ES
MELSEC iQ-F FX5UJ-60MT/DS
MELSEC iQ-F FX5UJ-60MT/ESS
MELSEC iQ-F FX5UJ-60MT/DSS
MELSEC iQ-F FX5UJ-60MR/ES
MELSEC iQ-F FX5UJ-60MR/DS
MELSEC iQ-F FX5UJ-24MT/ES-A
MELSEC iQ-F FX5UJ-24MR/ES-A
MELSEC iQ-F FX5UJ-40MT/ES-A
MELSEC iQ-F FX5UJ-40MR/ES-A
MELSEC iQ-F FX5UJ-60MT/ES-A
MELSEC iQ-F FX5UJ-60MR/ES-A
MELSEC iQ-F FX5S-30MT/ES
MELSEC iQ-F FX5S-30MT/ESS
MELSEC iQ-F FX5S-30MR/ES
MELSEC iQ-F FX5S-40MT/ES
MELSEC iQ-F FX5S-40MT/ESS
MELSEC iQ-F FX5S-40MR/ES
MELSEC iQ-F FX5S-60MT/ES
MELSEC iQ-F FX5S-60MT/ESS
MELSEC iQ-F FX5S-60MR/ES
MELSEC iQ-F FX5S-80*MT/ES
MELSEC iQ-F FX5S-80*MT/ESS
MELSEC iQ-F FX5S-80*MR/ES
Software vendor:
Mitsubishi Electric
Mitsubishi Electric
Description
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient resource pool in the Ethernet function. A remote attacker can cause a denial of service condition on the target system.
Remediation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.