Rewterz Threat Alert – Phobos Ransomware – Active IOCs
January 27, 2023Rewterz Threat Advisory – ICS: Mitsubishi Electric MELFA controllers Vulnerability
January 27, 2023Rewterz Threat Alert – Phobos Ransomware – Active IOCs
January 27, 2023Rewterz Threat Advisory – ICS: Mitsubishi Electric MELFA controllers Vulnerability
January 27, 2023Severity
High
Analysis Summary
CVE-2022-40267 CVSS:5.9
Mitsubishi Electric MELSEC iQ-F, iQ-R Series could allow a remote attacker to bypass security restrictions, caused by predictable seed in the pseudo-random number generator. By sending a specially-crafted request, an attacker could exploit this vulnerability to bypass authorization.
CVE-2022-40265 CVSS:8.6
Mitsubishi Electric MELSEC iQ-R Series devices are vulnerable to a denial of service, caused by improper validation of user-supplied input. By sending a specially-crafted packets, a remote attacker could exploit this vulnerability to cause a denial of service.
Impact
- Denial of Service
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2022-40267
- CVE-2022-40265
Affected Vendors
Mitsubishi Electric
Affected Products
Mitsubishi Electric MELSEC
iQ-FiQ-R Series
Mitsubishi Electric MELSEC iQ-R Series R04ENCPU 65
Mitsubishi Electric MELSEC iQ-R Series R08ENCPU 65
Mitsubishi Electric MELSEC iQ-R Series R120ENCPU 65
Mitsubishi Electric MELSEC iQ-R Series R16ENCPU 65
Mitsubishi Electric MELSEC iQ-R Series R32ENCPU 65
Remediation
Refer to Mitsubishi Electric Advisory for patch, upgrade or suggested workaround information.