#VU61822 Use of Password Hash Instead of Password for Authentication in MELSEC iQ-F series FX5U(C) CPU module and MELSEC iQ-F Series FX5UJ CPU module
Vulnerability identifier: #VU61822
Vulnerability risk: Medium
CVSSv3.1: 5.4 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:U/RC:C]
CVE-ID:
CWE-ID:
CWE-836
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
MELSEC iQ-F series FX5U(C) CPU module
Hardware solutions /
Routers & switches, VoIP, GSM, etc
MELSEC iQ-F Series FX5UJ CPU module
Hardware solutions /
Routers & switches, VoIP, GSM, etc
Vendor: Mitsubishi Electric
Description
The vulnerability allows a remote attacker to compromise the target system.
The vulnerability exists due to use of password hash instead of password for authentication. A remote attacker can log in to the product by replaying an eavesdropped password hash.
Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.
Vulnerable software versions
MELSEC iQ-F series FX5U(C) CPU module: All versions
MELSEC iQ-F Series FX5UJ CPU module: All versions
External links
http://jvn.jp/vu/JVNVU96577897/index.html
http://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2021-031_en.pdf
http://www.cisa.gov/uscert/ics/advisories/icsa-22-090-04
http://www.ptsecurity.com/ww-en/analytics/threatscape/pt-2021-08/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
