← voltar
CVE-2023-5275

CVE-2023-5275

CVSS 2.5 LOWEPSS 0.3%CWE-20
Vexday Risk Score
8Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 2.5EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch referenciado
Ciclo de vida
21 nov 2023Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to cause a denial-of-service (DoS) condition on the function by sending specially crafted packets. However, the attacker would need to send the packets from within the same personal computer where the function is running.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L
Produtos afetados
Mitsubishi Electric Corporation · GX Works2

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://jvn.jp/vu/JVNVU98760962/index.htmlhttps://www.cisa.gov/news-events/ics-advisories/icsa-23-331-03https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-015_en.pdf