{ "id": "CVE-2024-7316", "sourceIdentifier": "Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp", "published": "2024-10-17T22:15:03.313", "lastModified": "2025-02-21T00:15:08.203", "vulnStatus": "Undergoing Analysis", "cveTags": [], "descriptions": [ { "lang": "en", "value": "Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition on the product by sending specially crafted packets to TCP port 683, causing an emergency stop." }, { "lang": "es", "value": "La vulnerabilidad de validaci\u00f3n incorrecta de la cantidad especificada en la entrada en la serie CNC de Mitsubishi Electric permite que un atacante remoto no autenticado provoque una condici\u00f3n de denegaci\u00f3n de servicio (DoS) en el producto al enviar paquetes especialmente manipulados al puerto TCP 683, lo que provoca una parada de emergencia." } ], "metrics": { "cvssMetricV31": [ { "source": "Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp", "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "baseScore": 5.9, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH" }, "exploitabilityScore": 2.2, "impactScore": 3.6 } ] }, "weaknesses": [ { "source": "Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp", "type": "Secondary", "description": [ { "lang": "en", "value": "CWE-1284" } ] } ], "references": [ { "url": "https://jvn.jp/vu/JVNVU92054409/index.html", "source": "Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp" }, { "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-007_en.pdf", "source": "Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp" } ] }