CVE-2022-33323
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
02/02/2023
Last modified:
21/07/2023
Description
Active Debug Code vulnerability in robot controller of Mitsubishi Electric Corporation industrial robot MELFA SD/SQ Series and MELFA F-Series allows a remote unauthenticated attacker to gain unauthorized access by authentication bypass through an unauthorized telnet login. As for the affected model names, controller types and firmware versions, see the Mitsubishi Electric's advisory which is listed in [References] section.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:mitsubishielectric:rh-12sdh55_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mitsubishielectric:rh-12sdh55:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:mitsubishielectric:rh-12sdh70_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mitsubishielectric:rh-12sdh70:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:mitsubishielectric:rh-12sdh85_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mitsubishielectric:rh-12sdh85:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:mitsubishielectric:rh-12sqh55_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mitsubishielectric:rh-12sqh55:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:mitsubishielectric:rh-12sqh70_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mitsubishielectric:rh-12sqh70:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:mitsubishielectric:rh-12sqh85_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mitsubishielectric:rh-12sqh85:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:mitsubishielectric:rh-20sdh100_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:mitsubishielectric:rh-20sdh100:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:mitsubishielectric:rh-20sdh85_firmware:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page