Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
None
Privileges Required
None
Attack Vector
Network
0

CVE-2023-4625

Disclosure Date: November 06, 2023
CVE-2023-4625 CVSS v3 Base Score: 5.3
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Improper Restriction of Excessive Authentication Attempts vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F/iQ-R Series CPU modules Web server function allows a remote unauthenticated attacker to prevent legitimate users from logging into the Web server function for a certain period after the attacker has attempted to log in illegally by continuously attempting unauthorized login to the Web server function. The impact of this vulnerability will persist while the attacker continues to attempt unauthorized login.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
5.3 Medium
Impact Score:
1.4
Exploitability Score:
3.9
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Attack Vector (AV):
Network
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
None
Integrity (I):
None
Availability (A):
Low

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
MELSEC iQ-F Series FX5U-32MT/ES all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-32MT/ES 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-64MT/ES all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-64MT/ES 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-80MT/ES all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-80MT/ES 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-32MR/ES all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-32MR/ES 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-64MR/ES all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-64MR/ES 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-80MR/ES all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-80MR/ES 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-32MT/DS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-32MT/DS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-64MT/DS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-64MT/DS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-80MT/DS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-80MT/DS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-32MR/DS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-32MR/DS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-64MR/DS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-64MR/DS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-80MR/DS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-80MR/DS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-32MT/ESS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-32MT/ESS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-64MT/ESS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-64MT/ESS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-80MT/ESS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-80MT/ESS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-32MT/DSS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-32MT/DSS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-64MT/DSS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-64MT/DSS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5U-80MT/DSS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5U-80MT/DSS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5UC-32MT/D all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5UC-32MT/D 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5UC-64MT/D all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5UC-64MT/D 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5UC-96MT/D all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5UC-96MT/D 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5UC-32MT/DSS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5UC-32MT/DSS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5UC-64MT/DSS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5UC-64MT/DSS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5UC-96MT/DSS all versions (for serial number 17X**** and later)
MELSEC iQ-F Series FX5UC-96MT/DSS 1.060 or later (for serial number 179**** and prior)
MELSEC iQ-F Series FX5UC-32MT/DS-TS all versions
MELSEC iQ-F Series FX5UC-32MT/DSS-TS all versions
MELSEC iQ-F Series FX5UC-32MR/DS-TS all versions
MELSEC iQ-F Series FX5UJ-24MT/ES all versions
MELSEC iQ-F Series FX5UJ-40MT/ES all versions
MELSEC iQ-F Series FX5UJ-60MT/ES all versions
MELSEC iQ-F Series FX5UJ-24MR/ES all versions
MELSEC iQ-F Series FX5UJ-40MR/ES all versions
MELSEC iQ-F Series FX5UJ-60MR/ES all versions
MELSEC iQ-F Series FX5UJ-24MT/ESS all versions
MELSEC iQ-F Series FX5UJ-40MT/ESS all versions
MELSEC iQ-F Series FX5UJ-60MT/ESS all versions
MELSEC iQ-F Series FX5UJ-24MT/DS all versions
MELSEC iQ-F Series FX5UJ-40MT/DS all versions
MELSEC iQ-F Series FX5UJ-60MT/DS all versions
MELSEC iQ-F Series FX5UJ-24MR/DS all versions
MELSEC iQ-F Series FX5UJ-40MR/DS all versions
MELSEC iQ-F Series FX5UJ-60MR/DS all versions
MELSEC iQ-F Series FX5UJ-24MT/DSS all versions
MELSEC iQ-F Series FX5UJ-40MT/DSS all versions
MELSEC iQ-F Series FX5UJ-60MT/DSS all versions
MELSEC iQ-F Series FX5UJ-24MT/ES-A all versions
MELSEC iQ-F Series FX5UJ-40MT/ES-A all versions
MELSEC iQ-F Series FX5UJ-60MT/ES-A all versions
MELSEC iQ-F Series FX5UJ-24MR/ES-A all versions
MELSEC iQ-F Series FX5UJ-40MR/ES-A all versions
MELSEC iQ-F Series FX5UJ-60MR/ES-A all versions
MELSEC iQ-F Series FX5S-30MT/ES all versions
MELSEC iQ-F Series FX5S-40MT/ES all versions
MELSEC iQ-F Series FX5S-60MT/ES all versions
MELSEC iQ-F Series FX5S-80MT/ES all versions
MELSEC iQ-F Series FX5S-30MR/ES all versions
MELSEC iQ-F Series FX5S-40MR/ES all versions
MELSEC iQ-F Series FX5S-60MR/ES all versions
MELSEC iQ-F Series FX5S-80MR/ES all versions
MELSEC iQ-F Series FX5S-30MT/ESS all versions
MELSEC iQ-F Series FX5S-40MT/ESS all versions
MELSEC iQ-F Series FX5S-60MT/ESS all versions
MELSEC iQ-F Series FX5S-80MT/ESS all versions
MELSEC iQ-R Series R00CPU versions 05 or later
MELSEC iQ-R Series R01CPU versions 05 or later
MELSEC iQ-R Series R02CPU versions 05 or later
MELSEC iQ-R Series R04CPU versions 35 or later
MELSEC iQ-R Series R08CPU versions 35 or later
MELSEC iQ-R Series R16CPU versions 35 or later
MELSEC iQ-R Series R32CPU versions 35 or later
MELSEC iQ-R Series R120CPU versions 35 or later
MELSEC iQ-R Series R04ENCPU versions 35 or later
MELSEC iQ-R Series R08ENCPU versions 35 or later
MELSEC iQ-R Series R16ENCPU versions 35 or later
MELSEC iQ-R Series R32ENCPU versions 35 or later
MELSEC iQ-R Series R120ENCPU versions 35 or later
MELSEC iQ-R Series R08PCPU versions 37 or later
MELSEC iQ-R Series R16PCPU versions 37 or later
MELSEC iQ-R Series R32PCPU versions 37 or later
MELSEC iQ-R Series R120PCPU versions 37 or later
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

Products

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis