admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-07 11:06:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2023-11-09 09:00:36 +00:00
parent 9bbf3442a4
commit 9e0acfbcbe
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
8 changed files with 2015 additions and 212 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

641
2021/20xxx/CVE-2021-20609.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU Firmware versions \"24\" and prior, Mitsubishi Electric MELSEC iQ-R Series R04/08/16/32/120(EN)CPU Firmware versions \"57\" and prior, Mitsubishi Electric MELSEC iQ-R Series R08/16/32/120SFCPU Firmware versions \"28\" and prior, Mitsubishi Electric MELSEC iQ-R Series R08/16/32/120PCPU Firmware versions \"29\" and prior, Mitsubishi Electric MELSEC iQ-R Series R08/16/32/120PSFCPU Firmware versions \"08\" and prior, Mitsubishi Electric MELSEC iQ-R Series R16/32/64MTCPU Operating system software version \"23\" and prior, Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V Firmware versions \"16\" and prior, Mitsubishi Electric MELSEC Q Series Q03UDECPU The first 5 digits of serial No. \"23121\" and prior, Mitsubishi Electric MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU The first 5 digits of serial No. \"23121\" and prior, Mitsubishi Electric MELSEC Q Series Q03/04/06/13/26UDVCPU The first 5 digits of serial No. \"23071\" and prior, Mitsubishi Electric MELSEC Q Series Q04/06/13/26UDPVCPU The first 5 digits of serial No. \"23071\" and prior, Mitsubishi Electric MELSEC Q Series Q12DCCPU-V The first 5 digits of serial No. \"24031\" and prior, Mitsubishi Electric MELSEC Q Series Q24DHCCPU-V(G) The first 5 digits of serial No. \"24031\" and prior, Mitsubishi Electric MELSEC Q Series Q24/26DHCCPU-LS The first 5 digits of serial No. \"24031\" and prior, Mitsubishi Electric MELSEC Q Series MR-MQ100 Operating system software version \"F\" and prior, Mitsubishi Electric MELSEC Q Series Q172/173DCPU-S1 Operating system software version \"W\" and prior, Mitsubishi Electric MELSEC Q Series Q172/173DSCPU All versions, Mitsubishi Electric MELSEC Q Series Q170MCPU Operating system software version \"W\" and prior, Mitsubishi Electric MELSEC Q Series Q170MSCPU(-S1) All versions, Mitsubishi Electric MELSEC L Series L02/06/26CPU(-P) The first 5 digits of serial No. \"23121\" and prior, Mitsubishi Electric MELSEC L Series L26CPU-(P)BT The first 5 digits of serial No. \"23121\" and prior and Mitsubishi Electric MELIPC Series MI5122-VW Firmware versions \"05\" and prior allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery." "value": "Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery."
} }
] ]
}, },
@ -32,71 +32,313 @@
"vendor": { "vendor": {
"vendor_data": [ "vendor_data": [
{ {
"vendor_name": "Mitsubishi Electric", "vendor_name": "Mitsubishi Electric Corporation",
"product": { "product": {
"product_data": [ "product_data": [
{ {
"product_name": "MELSEC iQ-R Series R00/01/02CPU", "product_name": "MELSEC iQ-R Series R00CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"24\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"24\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R04/08/16/32/120(EN)CPU", "product_name": "MELSEC iQ-R Series R01CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"57\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"24\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R08/16/32/120SFCPU", "product_name": "MELSEC iQ-R Series R02CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"28\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"24\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R08/16/32/120PCPU", "product_name": "MELSEC iQ-R Series R04CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"29\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"57\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R08/16/32/120PSFCPU", "product_name": "MELSEC iQ-R Series R08CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"08\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"57\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R16/32/64MTCPU", "product_name": "MELSEC iQ-R Series R16CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"23\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R04ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16MTCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"23\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32MTCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"23\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R64MTCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"23\" and prior"
} }
] ]
} }
@ -106,8 +348,8 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"16\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"16\" and prior"
} }
] ]
} }
@ -117,41 +359,195 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU", "product_name": "MELSEC Q Series Q04UDEHCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q03/04/06/13/26UDVCPU", "product_name": "MELSEC Q Series Q06UDEHCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23071\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q04/06/13/26UDPVCPU", "product_name": "MELSEC Q Series Q10UDEHCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23071\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q13UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q20UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q50UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q100UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q03UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q04UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q06UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q13UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q04UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q06UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q13UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
} }
] ]
} }
@ -161,30 +557,52 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"24031\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"24031\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q24DHCCPU-V(G)", "product_name": "MELSEC Q Series Q24DHCCPU-V ",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"24031\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"24031\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q24/26DHCCPU-LS", "product_name": "MELSEC Q Series Q24DHCCPU-VG",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"24031\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"24031\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q24DHCCPU-LS",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"24031\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26DHCCPU-LS",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"24031\" and prior"
} }
] ]
} }
@ -194,30 +612,52 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"F\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"F\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q172/173DCPU-S1", "product_name": "MELSEC Q Series Q172DCPU-S1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"W\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"W\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q172/173DSCPU", "product_name": "MELSEC Q Series Q173DCPU-S1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "All versions", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"W\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q172DSCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"Y\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q173DSCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"Y\" and prior"
} }
] ]
} }
@ -227,41 +667,118 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"W\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"W\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q170MSCPU(-S1)", "product_name": "MELSEC Q Series Q170MSCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "All versions", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"Y\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC L Series L02/06/26CPU(-P)", "product_name": "MELSEC Q Series Q170MSCPU-S1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"Y\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC L Series L26CPU-(P)BT", "product_name": "MELSEC L Series L02CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L06CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L02CPU-P",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L06CPU-P",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU-P",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU-BT",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU-PBT",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
@ -271,8 +788,8 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"05\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"05\" and prior"
} }
] ]
} }

641
2021/20xxx/CVE-2021-20610.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU Firmware versions \"24\" and prior, Mitsubishi Electric MELSEC iQ-R Series R04/08/16/32/120(EN)CPU Firmware versions \"57\" and prior, Mitsubishi Electric MELSEC iQ-R Series R08/16/32/120SFCPU Firmware versions \"28\" and prior, Mitsubishi Electric MELSEC iQ-R Series R08/16/32/120PCPU Firmware versions \"29\" and prior, Mitsubishi Electric MELSEC iQ-R Series R08/16/32/120PSFCPU Firmware versions \"08\" and prior, Mitsubishi Electric MELSEC iQ-R Series R16/32/64MTCPU Operating system software version \"23\" and prior, Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V Firmware versions \"16\" and prior, Mitsubishi Electric MELSEC Q Series Q03UDECPU The first 5 digits of serial No. \"23121\" and prior, Mitsubishi Electric MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU The first 5 digits of serial No. \"23121\" and prior, Mitsubishi Electric MELSEC Q Series Q03/04/06/13/26UDVCPU The first 5 digits of serial No. \"23071\" and prior, Mitsubishi Electric MELSEC Q Series Q04/06/13/26UDPVCPU The first 5 digits of serial No. \"23071\" and prior, Mitsubishi Electric MELSEC Q Series Q12DCCPU-V The first 5 digits of serial No. \"24031\" and prior, Mitsubishi Electric MELSEC Q Series Q24DHCCPU-V(G) The first 5 digits of serial No. \"24031\" and prior, Mitsubishi Electric MELSEC Q Series Q24/26DHCCPU-LS The first 5 digits of serial No. \"24031\" and prior, Mitsubishi Electric MELSEC Q Series MR-MQ100 Operating system software version \"F\" and prior, Mitsubishi Electric MELSEC Q Series Q172/173DCPU-S1 Operating system software version \"W\" and prior, Mitsubishi Electric MELSEC Q Series Q172/173DSCPU All versions, Mitsubishi Electric MELSEC Q Series Q170MCPU Operating system software version \"W\" and prior, Mitsubishi Electric MELSEC Q Series Q170MSCPU(-S1) All versions, Mitsubishi Electric MELSEC L Series L02/06/26CPU(-P) The first 5 digits of serial No. \"23121\" and prior, Mitsubishi Electric MELSEC L Series L26CPU-(P)BT The first 5 digits of serial No. \"23121\" and prior and Mitsubishi Electric MELIPC Series MI5122-VW Firmware versions \"05\" and prior allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery." "value": "Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery."
} }
] ]
}, },
@ -32,71 +32,313 @@
"vendor": { "vendor": {
"vendor_data": [ "vendor_data": [
{ {
"vendor_name": "Mitsubishi Electric", "vendor_name": "Mitsubishi Electric Corporation",
"product": { "product": {
"product_data": [ "product_data": [
{ {
"product_name": "MELSEC iQ-R Series R00/01/02CPU", "product_name": "MELSEC iQ-R Series R00CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"24\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"24\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R04/08/16/32/120(EN)CPU", "product_name": "MELSEC iQ-R Series R01CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"57\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"24\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R08/16/32/120SFCPU", "product_name": "MELSEC iQ-R Series R02CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"28\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"24\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R08/16/32/120PCPU", "product_name": "MELSEC iQ-R Series R04CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"29\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"57\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R08/16/32/120PSFCPU", "product_name": "MELSEC iQ-R Series R08CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"08\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"57\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R16/32/64MTCPU", "product_name": "MELSEC iQ-R Series R16CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"23\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R04ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16MTCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"23\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32MTCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"23\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R64MTCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"23\" and prior"
} }
] ]
} }
@ -106,8 +348,8 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"16\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"16\" and prior"
} }
] ]
} }
@ -117,41 +359,195 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU", "product_name": "MELSEC Q Series Q04UDEHCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q03/04/06/13/26UDVCPU", "product_name": "MELSEC Q Series Q06UDEHCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23071\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q04/06/13/26UDPVCPU", "product_name": "MELSEC Q Series Q10UDEHCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23071\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q13UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q20UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q50UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q100UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q03UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q04UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q06UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q13UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q04UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q06UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q13UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
} }
] ]
} }
@ -161,30 +557,52 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"24031\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"24031\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q24DHCCPU-V(G)", "product_name": "MELSEC Q Series Q24DHCCPU-V ",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"24031\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"24031\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q24/26DHCCPU-LS", "product_name": "MELSEC Q Series Q24DHCCPU-VG",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"24031\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"24031\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q24DHCCPU-LS",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"24031\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26DHCCPU-LS",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"24031\" and prior"
} }
] ]
} }
@ -194,30 +612,52 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"F\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"F\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q172/173DCPU-S1", "product_name": "MELSEC Q Series Q172DCPU-S1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"W\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"W\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q172/173DSCPU", "product_name": "MELSEC Q Series Q173DCPU-S1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "All versions", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"W\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q172DSCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"Y\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q173DSCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"Y\" and prior"
} }
] ]
} }
@ -227,41 +667,118 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"W\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"W\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q170MSCPU(-S1)", "product_name": "MELSEC Q Series Q170MSCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "All versions", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"Y\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC L Series L02/06/26CPU(-P)", "product_name": "MELSEC Q Series Q170MSCPU-S1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"Y\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC L Series L26CPU-(P)BT", "product_name": "MELSEC L Series L02CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L06CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L02CPU-P",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L06CPU-P",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU-P",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU-BT",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU-PBT",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
@ -271,8 +788,8 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"05\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"05\" and prior"
} }
] ]
} }

641
2021/20xxx/CVE-2021-20611.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU Firmware versions \"24\" and prior, Mitsubishi Electric MELSEC iQ-R Series R04/08/16/32/120(EN)CPU Firmware versions \"57\" and prior, Mitsubishi Electric MELSEC iQ-R Series R08/16/32/120SFCPU Firmware versions \"28\" and prior, Mitsubishi Electric MELSEC iQ-R Series R08/16/32/120PCPU Firmware versions \"29\" and prior, Mitsubishi Electric MELSEC iQ-R Series R08/16/32/120PSFCPU Firmware versions \"08\" and prior, Mitsubishi Electric MELSEC iQ-R Series R16/32/64MTCPU Operating system software version \"23\" and prior, Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V Firmware versions \"16\" and prior, Mitsubishi Electric MELSEC Q Series Q03UDECPU The first 5 digits of serial No. \"23121\" and prior, Mitsubishi Electric MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU The first 5 digits of serial No. \"23121\" and prior, Mitsubishi Electric MELSEC Q Series Q03/04/06/13/26UDVCPU The first 5 digits of serial No. \"23071\" and prior, Mitsubishi Electric MELSEC Q Series Q04/06/13/26UDPVCPU The first 5 digits of serial No. \"23071\" and prior, Mitsubishi Electric MELSEC Q Series Q12DCCPU-V The first 5 digits of serial No. \"24031\" and prior, Mitsubishi Electric MELSEC Q Series Q24DHCCPU-V(G) The first 5 digits of serial No. \"24031\" and prior, Mitsubishi Electric MELSEC Q Series Q24/26DHCCPU-LS The first 5 digits of serial No. \"24031\" and prior, Mitsubishi Electric MELSEC Q Series MR-MQ100 Operating system software version \"F\" and prior, Mitsubishi Electric MELSEC Q Series Q172/173DCPU-S1 Operating system software version \"W\" and prior, Mitsubishi Electric MELSEC Q Series Q172/173DSCPU All versions, Mitsubishi Electric MELSEC Q Series Q170MCPU Operating system software version \"W\" and prior, Mitsubishi Electric MELSEC Q Series Q170MSCPU(-S1) All versions, Mitsubishi Electric MELSEC L Series L02/06/26CPU(-P) The first 5 digits of serial No. \"23121\" and prior, Mitsubishi Electric MELSEC L Series L26CPU-(P)BT The first 5 digits of serial No. \"23121\" and prior and Mitsubishi Electric MELIPC Series MI5122-VW Firmware versions \"05\" and prior allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery." "value": "Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU, MELSEC iQ-R Series R16/32/64MTCPU, MELSEC iQ-R Series R12CCPU-V, MELSEC Q Series Q03UDECPU, MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU, MELSEC Q Series Q03/04/06/13/26UDVCPU, MELSEC Q Series Q04/06/13/26UDPVCPU, MELSEC Q Series Q12DCCPU-V, MELSEC Q Series Q24DHCCPU-V(G), MELSEC Q Series Q24/26DHCCPU-LS, MELSEC Q Series MR-MQ100, MELSEC Q Series Q172/173DCPU-S1, MELSEC Q Series Q172/173DSCPU, MELSEC Q Series Q170MCPU, MELSEC Q Series Q170MSCPU(-S1), MELSEC L Series L02/06/26CPU(-P), MELSEC L Series L26CPU-(P)BT and MELIPC Series MI5122-VW allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending specially crafted packets. System reset is required for recovery."
} }
] ]
}, },
@ -32,71 +32,313 @@
"vendor": { "vendor": {
"vendor_data": [ "vendor_data": [
{ {
"vendor_name": "Mitsubishi Electric", "vendor_name": "Mitsubishi Electric Corporation",
"product": { "product": {
"product_data": [ "product_data": [
{ {
"product_name": "MELSEC iQ-R Series R00/01/02CPU", "product_name": "MELSEC iQ-R Series R00CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"24\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"24\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R04/08/16/32/120(EN)CPU", "product_name": "MELSEC iQ-R Series R01CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"57\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"24\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R08/16/32/120SFCPU", "product_name": "MELSEC iQ-R Series R02CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"28\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"24\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R08/16/32/120PCPU", "product_name": "MELSEC iQ-R Series R04CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"29\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"57\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R08/16/32/120PSFCPU", "product_name": "MELSEC iQ-R Series R08CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"08\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"57\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC iQ-R Series R16/32/64MTCPU", "product_name": "MELSEC iQ-R Series R16CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"23\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R04ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120ENCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"57\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120SFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"26\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120PCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"29\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R08PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R120PSFCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Firmware versions \"08\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R16MTCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"23\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R32MTCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"23\" and prior"
}
]
}
},
{
"product_name": "MELSEC iQ-R Series R64MTCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"23\" and prior"
} }
] ]
} }
@ -106,8 +348,8 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"16\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"16\" and prior"
} }
] ]
} }
@ -117,41 +359,195 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q04/06/10/13/20/26/50/100UDEHCPU", "product_name": "MELSEC Q Series Q04UDEHCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q03/04/06/13/26UDVCPU", "product_name": "MELSEC Q Series Q06UDEHCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23071\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q04/06/13/26UDPVCPU", "product_name": "MELSEC Q Series Q10UDEHCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23071\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q13UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q20UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q50UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q100UDEHCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q03UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q04UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q06UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q13UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26UDVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q04UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q06UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q13UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26UDPVCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23071\" and prior"
} }
] ]
} }
@ -161,30 +557,52 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"24031\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"24031\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q24DHCCPU-V(G)", "product_name": "MELSEC Q Series Q24DHCCPU-V ",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"24031\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"24031\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q24/26DHCCPU-LS", "product_name": "MELSEC Q Series Q24DHCCPU-VG",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"24031\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"24031\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q24DHCCPU-LS",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"24031\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q26DHCCPU-LS",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"24031\" and prior"
} }
] ]
} }
@ -194,30 +612,52 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"F\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"F\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q172/173DCPU-S1", "product_name": "MELSEC Q Series Q172DCPU-S1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"W\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"W\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q172/173DSCPU", "product_name": "MELSEC Q Series Q173DCPU-S1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "All versions", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"W\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q172DSCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"Y\" and prior"
}
]
}
},
{
"product_name": "MELSEC Q Series Q173DSCPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Operating system software version \"Y\" and prior"
} }
] ]
} }
@ -227,41 +667,118 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Operating system software version \"W\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"W\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC Q Series Q170MSCPU(-S1)", "product_name": "MELSEC Q Series Q170MSCPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "All versions", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"Y\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC L Series L02/06/26CPU(-P)", "product_name": "MELSEC Q Series Q170MSCPU-S1",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Operating system software version \"Y\" and prior"
} }
] ]
} }
}, },
{ {
"product_name": "MELSEC L Series L26CPU-(P)BT", "product_name": "MELSEC L Series L02CPU",
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "The first 5 digits of serial No. \"23121\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L06CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L02CPU-P",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L06CPU-P",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU-P",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU-BT",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
}
]
}
},
{
"product_name": "MELSEC L Series L26CPU-PBT",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "The first 5 digits of serial No. \"23121\" and prior"
} }
] ]
} }
@ -271,8 +788,8 @@
"version": { "version": {
"version_data": [ "version_data": [
{ {
"version_value": "Firmware versions \"05\" and prior", "version_affected": "=",
"version_affected": "=" "version_value": "Firmware versions \"05\" and prior"
} }
] ]
} }

24
2023/39xxx/CVE-2023-39417.json
View File

@ -43,18 +43,10 @@
"version_value": "not down converted", "version_value": "not down converted",
"x_cve_json_5_version_data": { "x_cve_json_5_version_data": {
"versions": [ "versions": [
{
"version": "13.12",
"status": "unaffected"
},
{ {
"version": "12.16", "version": "12.16",
"status": "unaffected" "status": "unaffected"
}, },
{
"version": "15.4",
"status": "unaffected"
},
{ {
"version": "11.21", "version": "11.21",
"status": "unaffected" "status": "unaffected"
@ -62,6 +54,14 @@
{ {
"version": "14.9", "version": "14.9",
"status": "unaffected" "status": "unaffected"
},
{
"version": "15.4",
"status": "unaffected"
},
{
"version": "13.12",
"status": "unaffected"
} }
] ]
} }
@ -196,9 +196,9 @@
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=2228111" "name": "https://bugzilla.redhat.com/show_bug.cgi?id=2228111"
}, },
{ {
"url": "https://www.postgresql.org/support/security/CVE-2023-39417", "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00003.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://www.postgresql.org/support/security/CVE-2023-39417" "name": "https://lists.debian.org/debian-lts-announce/2023/10/msg00003.html"
}, },
{ {
"url": "https://security.netapp.com/advisory/ntap-20230915-0002/", "url": "https://security.netapp.com/advisory/ntap-20230915-0002/",
@ -206,9 +206,9 @@
"name": "https://security.netapp.com/advisory/ntap-20230915-0002/" "name": "https://security.netapp.com/advisory/ntap-20230915-0002/"
}, },
{ {
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00003.html", "url": "https://www.postgresql.org/support/security/CVE-2023-39417",
"refsource": "MISC", "refsource": "MISC",
"name": "https://lists.debian.org/debian-lts-announce/2023/10/msg00003.html" "name": "https://www.postgresql.org/support/security/CVE-2023-39417"
} }
] ]
}, },

36
2023/43xxx/CVE-2023-43788.json
View File

@ -11,7 +11,7 @@
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local to trigger an out-of-bounds read error and read the contents of memory on the system." "value": "A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local attacker to trigger an out-of-bounds read error and read the contents of memory on the system."
} }
] ]
}, },
@ -77,6 +77,12 @@
"product_name": "Red Hat Enterprise Linux 7", "product_name": "Red Hat Enterprise Linux 7",
"version": { "version": {
"version_data": [ "version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "unknown"
}
},
{ {
"version_value": "not down converted", "version_value": "not down converted",
"x_cve_json_5_version_data": { "x_cve_json_5_version_data": {
@ -90,6 +96,12 @@
"product_name": "Red Hat Enterprise Linux 8", "product_name": "Red Hat Enterprise Linux 8",
"version": { "version": {
"version_data": [ "version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "affected"
}
},
{ {
"version_value": "not down converted", "version_value": "not down converted",
"x_cve_json_5_version_data": { "x_cve_json_5_version_data": {
@ -103,6 +115,12 @@
"product_name": "Red Hat Enterprise Linux 9", "product_name": "Red Hat Enterprise Linux 9",
"version": { "version": {
"version_data": [ "version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "affected"
}
},
{ {
"version_value": "not down converted", "version_value": "not down converted",
"x_cve_json_5_version_data": { "x_cve_json_5_version_data": {
@ -123,6 +141,12 @@
"product_name": "Fedora", "product_name": "Fedora",
"version": { "version": {
"version_data": [ "version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "affected"
}
},
{ {
"version_value": "not down converted", "version_value": "not down converted",
"x_cve_json_5_version_data": { "x_cve_json_5_version_data": {
@ -150,15 +174,15 @@
"refsource": "MISC", "refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=2242248" "name": "https://bugzilla.redhat.com/show_bug.cgi?id=2242248"
}, },
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6FARGWN7VWXXWPXYNEEDJLRR3EWFZ3T/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6FARGWN7VWXXWPXYNEEDJLRR3EWFZ3T/"
},
{ {
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63IBRFLQVZSMOAZBZOBKFWJP26ILRAGQ/", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63IBRFLQVZSMOAZBZOBKFWJP26ILRAGQ/",
"refsource": "MISC", "refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63IBRFLQVZSMOAZBZOBKFWJP26ILRAGQ/" "name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63IBRFLQVZSMOAZBZOBKFWJP26ILRAGQ/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6FARGWN7VWXXWPXYNEEDJLRR3EWFZ3T/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6FARGWN7VWXXWPXYNEEDJLRR3EWFZ3T/"
} }
] ]
}, },

24
2023/43xxx/CVE-2023-43789.json
View File

@ -77,6 +77,12 @@
"product_name": "Red Hat Enterprise Linux 7", "product_name": "Red Hat Enterprise Linux 7",
"version": { "version": {
"version_data": [ "version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "unknown"
}
},
{ {
"version_value": "not down converted", "version_value": "not down converted",
"x_cve_json_5_version_data": { "x_cve_json_5_version_data": {
@ -90,6 +96,12 @@
"product_name": "Red Hat Enterprise Linux 8", "product_name": "Red Hat Enterprise Linux 8",
"version": { "version": {
"version_data": [ "version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "affected"
}
},
{ {
"version_value": "not down converted", "version_value": "not down converted",
"x_cve_json_5_version_data": { "x_cve_json_5_version_data": {
@ -103,6 +115,12 @@
"product_name": "Red Hat Enterprise Linux 9", "product_name": "Red Hat Enterprise Linux 9",
"version": { "version": {
"version_data": [ "version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "affected"
}
},
{ {
"version_value": "not down converted", "version_value": "not down converted",
"x_cve_json_5_version_data": { "x_cve_json_5_version_data": {
@ -123,6 +141,12 @@
"product_name": "Fedora", "product_name": "Fedora",
"version": { "version": {
"version_data": [ "version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "affected"
}
},
{ {
"version_value": "not down converted", "version_value": "not down converted",
"x_cve_json_5_version_data": { "x_cve_json_5_version_data": {

61
2023/47xxx/CVE-2023-47248.json
View File

@ -1,18 +1,71 @@
{ {
"data_version": "4.0",
"data_type": "CVE", "data_type": "CVE",
"data_format": "MITRE", "data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": { "CVE_data_meta": {
"ID": "CVE-2023-47248", "ID": "CVE-2023-47248",
"ASSIGNER": "cve@mitre.org", "ASSIGNER": "security@apache.org",
"STATE": "RESERVED" "STATE": "PUBLIC"
}, },
"description": { "description": {
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 to 14.0.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources (for example user-supplied input files).\n\nThis vulnerability only affects PyArrow, not other Apache Arrow implementations or bindings.\n\nIt is recommended that users of PyArrow upgrade to 14.0.1. Similarly, it is recommended that downstream libraries upgrade their dependency requirements to PyArrow 14.0.1 or later. PyPI packages are already available, and we hope that conda-forge packages will be available soon.\n\nIf it is not possible to upgrade, we provide a separate package `pyarrow-hotfix` that disables the vulnerability on older PyArrow versions. See https://pypi.org/project/pyarrow-hotfix/ for instructions.\n\n"
} }
] ]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-502 Deserialization of Untrusted Data",
"cweId": "CWE-502"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Apache Software Foundation",
"product": {
"product_data": [
{
"product_name": "PyArrow",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_name": "0.14.0",
"version_value": "14.0.0"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://lists.apache.org/thread/yhy7tdfjf9hrl9vfrtzo8p2cyjq87v7n",
"refsource": "MISC",
"name": "https://lists.apache.org/thread/yhy7tdfjf9hrl9vfrtzo8p2cyjq87v7n"
}
]
},
"generator": {
"engine": "Vulnogram 0.1.0-dev"
},
"source": {
"discovery": "EXTERNAL"
} }
} }

159
2023/4xxx/CVE-2023-4218.json
View File

@ -1,17 +1,168 @@
{ {
"data_version": "4.0",
"data_type": "CVE", "data_type": "CVE",
"data_format": "MITRE", "data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": { "CVE_data_meta": {
"ID": "CVE-2023-4218", "ID": "CVE-2023-4218",
"ASSIGNER": "cve@mitre.org", "ASSIGNER": "security@eclipse.org",
"STATE": "RESERVED" "STATE": "PUBLIC"
}, },
"description": { "description": {
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "In Eclipse IDE versions < 2023-09 (4.29) some files with xml content are parsed vulnerable against all sorts of XXE attacks. The user just needs to open any evil project or update an open project with a vulnerable file (for example for review a foreign repository or patch).\n"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-611 Improper Restriction of XML External Entity Reference",
"cweId": "CWE-611"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Eclipse Foundation",
"product": {
"product_data": [
{
"product_name": "Eclipse IDE",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "4.29"
}
]
}
},
{
"product_name": "org.eclipse.core.runtime",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "0",
"version_value": "3.29.0"
}
]
}
},
{
"product_name": "org.eclipse.pde",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_name": "0",
"version_value": "3.13.2400"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/8",
"refsource": "MISC",
"name": "https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/8"
},
{
"url": "https://github.com/eclipse-pde/eclipse.pde/pull/632/",
"refsource": "MISC",
"name": "https://github.com/eclipse-pde/eclipse.pde/pull/632/"
},
{
"url": "https://github.com/eclipse-pde/eclipse.pde/pull/667/",
"refsource": "MISC",
"name": "https://github.com/eclipse-pde/eclipse.pde/pull/667/"
},
{
"url": "https://github.com/eclipse-platform/eclipse.platform/pull/761",
"refsource": "MISC",
"name": "https://github.com/eclipse-platform/eclipse.platform/pull/761"
},
{
"url": "https://github.com/eclipse-platform/eclipse.platform.releng.buildtools/pull/45",
"refsource": "MISC",
"name": "https://github.com/eclipse-platform/eclipse.platform.releng.buildtools/pull/45"
},
{
"url": "https://github.com/eclipse-platform/eclipse.platform.ui/commit/f243cf0a28785b89b7c50bf4e1cce48a917d89bd",
"refsource": "MISC",
"name": "https://github.com/eclipse-platform/eclipse.platform.ui/commit/f243cf0a28785b89b7c50bf4e1cce48a917d89bd"
},
{
"url": "https://github.com/eclipse-jdt/eclipse.jdt.ui/commit/13675b1f8a74f47de4da89ed0ded6af7c21dfbec",
"refsource": "MISC",
"name": "https://github.com/eclipse-jdt/eclipse.jdt.ui/commit/13675b1f8a74f47de4da89ed0ded6af7c21dfbec"
},
{
"url": "https://github.com/eclipse-jdt/eclipse.jdt.core/commit/38dd2a878f45cdb3d8d52090f1d6d1b532fd4c4d",
"refsource": "MISC",
"name": "https://github.com/eclipse-jdt/eclipse.jdt.core/commit/38dd2a878f45cdb3d8d52090f1d6d1b532fd4c4d"
},
{
"url": "https://github.com/eclipse-emf/org.eclipse.emf/issues/10",
"refsource": "MISC",
"name": "https://github.com/eclipse-emf/org.eclipse.emf/issues/10"
},
{
"url": "https://github.com/eclipse-platform/eclipse.platform.swt/commit/bf71db5ddcb967c0863dad4745367b54f49e06ba",
"refsource": "MISC",
"name": "https://github.com/eclipse-platform/eclipse.platform.swt/commit/bf71db5ddcb967c0863dad4745367b54f49e06ba"
},
{
"url": "https://github.com/eclipse-cdt/cdt/commit/c7169b3186d2fef20f97467c3e2ad78e2943ed1b",
"refsource": "MISC",
"name": "https://github.com/eclipse-cdt/cdt/commit/c7169b3186d2fef20f97467c3e2ad78e2943ed1b"
}
]
},
"generator": {
"engine": "Vulnogram 0.1.0-dev"
},
"source": {
"discovery": "UNKNOWN"
},
"credits": [
{
"lang": "en",
"value": "J\u00f6rg Kubitz"
}
],
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
} }
] ]
} }