9.8

CVE-2024-1915

Incorrect Pointer Scaling vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially crafted packet.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
Herstellermitsubishielectric
Produkt melsec_q-q03udecpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_q-q04udehcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_q-q06udehcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_q-q10udehcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_q-q13udehcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_q-q20udehcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_q-q26udehcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_q-q50udehcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_q-q100udehcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishi
Produkt melsec_q03udvcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishi
Produkt melsec_q04udvcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishi
Produkt melsec_q06udvcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishi
Produkt melsec_q13udvcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishi
Produkt melsec_q26udvcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishi
Produkt melsec_q06udpvcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishi
Produkt melsec_q13udpvcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishi
Produkt melsec_q26udpvcpu
Default Statusunknown
Version < xxxxx26061
Version 0
Status affected
Herstellermitsubishielectric
Produkt l02cpu-p
Default Statusunknown
Version < xxxxx26041
Version 0
Status affected
Herstellermitsubishi
Produkt melsec_l06cpu\(-p\)
Default Statusunknown
Version < xxxxx26041
Version 0
Status affected
Herstellermitsubishi
Produkt melsec_l26cpu\(-p\)
Default Statusunknown
Version < xxxxx26041
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_l02cpu-p
Default Statusunknown
Version < xxxxx26041
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_l06cpu-p
Default Statusunknown
Version < xxxxx26041
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_l26cpu-p
Default Statusunknown
Version < xxxxx26041
Version 0
Status affected
Herstellermitsubishielectric
Produkt l26cpu-bt
Default Statusunknown
Version < xxxxx26041
Version 0
Status affected
Herstellermitsubishielectric
Produkt melsec_l26cpu-pbt
Default Statusunknown
Version < xxxxx26041
Version 0
Status affected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.43% 0.615
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 9.8 3.9 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE-468 Incorrect Pointer Scaling

In C and C++, one may often accidentally refer to the wrong memory due to the semantics of when math operations are implicitly scaled.