CVE-2022-40267

Predictable Seed in Pseudo-Random Number Generator (PRNG) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DSS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/z (x=24,40,60, y=T,R, z=ES,ESS) versions 1.042 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/ES-A (x=24,40,60, y=T,R) versions 1.043 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5S-xMy/z (x=30,40,60,80, y=T,R, z=ES,ESS) versions 1.003 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MR/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU versions 33 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU versions 66 and prior allows a remote unauthenticated attacker to access the Web server function by guessing the random numbers used for authentication from several used random numbers.
PRNG
PRNG
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
MitsubishiCNA
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
VendorProductVersion
mitsubishielectricfx5u-80mt\/ess_firmware
-
mitsubishielectricfx5u-32mt\/dss_firmware
-
mitsubishielectricfx5u-64mt\/dss_firmware
-
mitsubishielectricfx5u-80mt\/dss_firmware
-
mitsubishielectricfx5uc-32mt\/d_firmware
-
mitsubishielectricfx5uc-64mt\/d_firmware
-
mitsubishielectricfx5uc-96mt\/d_firmware
-
mitsubishielectricfx5uc-32mt\/dss_firmware
-
mitsubishielectricfx5uc-64mt\/dss_firmware
-
mitsubishielectricfx5uc-96mt\/dss_firmware
-
mitsubishielectricfx5uc-32mt\/ds-ts_firmware
𝑥
< 1.280
mitsubishielectricfx5uc-32mt\/dss-ts_firmware
𝑥
< 1.280
mitsubishielectricfx5uc-32mr\/ds-ts_firmware
𝑥
< 1.280
mitsubishielectricr00cpu_firmware
-
mitsubishielectricr01cpu_firmware
-
mitsubishielectricr02cpu_firmware
-
mitsubishielectricr04cpu_firmware
-
mitsubishielectricr08cpu_firmware
-
mitsubishielectricr16cpu_firmware
-
mitsubishielectricr32cpu_firmware
-
mitsubishielectricr120cpu_firmware
-
mitsubishielectricr04encpu_firmware
-
mitsubishielectricr08encpu_firmware
-
mitsubishielectricr16encpu_firmware
-
mitsubishielectricr32encpu_firmware
-
mitsubishielectricr120encpu_firmware
-
mitsubishielectricfx5uj-24mt\/es_firmware
𝑥
< 1.042
mitsubishielectricfx5uj-40mt\/es_firmware
𝑥
< 1.042
mitsubishielectricfx5uj-60mt\/es_firmware
𝑥
< 1.042
mitsubishielectricfx5uj-24mr\/es_firmware
𝑥
< 1.042
mitsubishielectricfx5uj-40mr\/es_firmware
𝑥
< 1.042
mitsubishielectricfx5uj-60mr\/es_firmware
𝑥
< 1.042
mitsubishielectricfx5uj-24mt\/ess_firmware
𝑥
< 1.042
mitsubishielectricfx5uj-40mt\/ess_firmware
𝑥
< 1.042
mitsubishielectricfx5uj-60mt\/ess_firmware
𝑥
< 1.042
mitsubishielectricfx5uj-24mt\/es-a_firmware
𝑥
< 1.043
mitsubishielectricfx5uj-40mt\/es-a_firmware
𝑥
< 1.043
mitsubishielectricfx5uj-60mt\/es-a_firmware
𝑥
< 1.043
mitsubishielectricfx5uj-24mr\/es-a_firmware
𝑥
< 1.043
mitsubishielectricfx5uj-40mr\/es-a_firmware
𝑥
< 1.043
mitsubishielectricfx5uj-60mr\/es-a_firmware
𝑥
< 1.043
mitsubishielectricfx5s-30mt\/es_firmware
𝑥
< 1.003
mitsubishielectricfx5s-40mt\/es_firmware
𝑥
< 1.003
mitsubishielectricfx5s-60mt\/es_firmware
𝑥
< 1.003
mitsubishielectricfx5s-80mt\/es_firmware
𝑥
< 1.003
mitsubishielectricfx5s-30mr\/es_firmware
𝑥
< 1.003
mitsubishielectricfx5s-40mr\/es_firmware
𝑥
< 1.003
mitsubishielectricfx5s-60mr\/es_firmware
𝑥
< 1.003
mitsubishielectricfx5s-80mr\/es_firmware
𝑥
< 1.003
mitsubishielectricfx5s-30mt\/ess_firmware
𝑥
< 1.003
mitsubishielectricfx5s-40mt\/ess_firmware
𝑥
< 1.003
mitsubishielectricfx5s-60mt\/ess_firmware
𝑥
< 1.003
mitsubishielectricfx5s-80mt\/ess_firmware
𝑥
< 1.003
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://jvn.jp/vu/JVNVU99673580/index.html
https://www.cisa.gov/uscert/ics/advisories/icsa-23-017-02
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-019_en.pdf
https://jvn.jp/vu/JVNVU99673580/index.html
https://www.cisa.gov/uscert/ics/advisories/icsa-23-017-02
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-019_en.pdf
https://www.talosintelligence.com/vulnerability_reports/TALOS-2022-1646