← volver
CVE-2023-5274

CVE-2023-5274

CVSS 2.5 LOWEPSS 0.3%CWE-20
Vexday Risk Score
8Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 2.5EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch referenciado
Ciclo de vida
21 nov 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to cause a denial-of-service (DoS) condition on the function by sending specially crafted packets. However, the attacker would need to send the packets from within the same personal computer where the function is running.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L
Productos afectados
Mitsubishi Electric Corporation · GX Works2

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://jvn.jp/vu/JVNVU98760962/index.htmlhttps://www.cisa.gov/news-events/ics-advisories/icsa-23-331-03https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-015_en.pdf