CVE-2024-7316 Information

Description

Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition on the product by sending specially crafted packets to TCP port 683 causing an emergency stop.

Reference

https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-007_en.pdf https://jvn.jp/vu/JVNVU92054409/index.html https://www.cisa.gov/news-events/ics-advisories/icsa-24-291-03