CVE-2024-8403

Denial-of-Service Vulnerability in Ethernet port on MELSEC iQ-F Ethernet Module and EtherNet/IP Module

Description

Improper Validation of Specified Type of Input vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET versions 1.100 to 1.200 and FX5-ENET/IP versions 1.100 to 1.104 allows a remote attacker to cause a Denial of Service condition in Ethernet communication of the products by sending specially crafted SLMP packets.

INFO

Published Date :

2024-11-19T05:57:17.693Z

Last Modified :

2026-03-31T03:55:17.457Z

Source :

Mitsubishi

AFFECTED PRODUCTS

The following products are affected by CVE-2024-8403 vulnerability.

Vendors	Products
Mitsubishi Electric	Melsec Iq-f Series Fx5-enet Melsec Iq-f Series Fx5-enet Ip

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-8403.

URL	Resource
https://jvn.jp/vu/JVNVU97790713/
https://www.cisa.gov/news-events/ics-advisories/icsa-24-324-01
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-009_en.pdf

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact