CVE-2023-2062

Information Disclosure vulnerability in EtherNet/IP Configuration tools

Description

Missing Password Field Masking vulnerability in Mitsubishi Electric Corporation EtherNet/IP configuration tools SW1DNN-EIPCT-BD and SW1DNN-EIPCTFX5-BD allows a remote unauthenticated attacker to know the password for MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP. This vulnerability results in authentication bypass vulnerability, which allows the attacker to access MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP via FTP.

References

Link	Tags
https://www.mitsubishielectric.co.jp/psirt/vulnerability/pdf/2023-004.pdf	vendor advisory
https://jvn.jp/vu/JVNVU92908006	third party advisory government resource
https://www.cisa.gov/news-events/ics-advisories/icsa-23-157-02	government resource

Frequently Asked Questions

What is the severity of CVE-2023-2062?: CVE-2023-2062 has been scored as a medium severity vulnerability.
How to fix CVE-2023-2062?: To fix CVE-2023-2062, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-2062 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2023-2062 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-2062?: CVE-2023-2062 affects Mitsubishi Electric Corporation EtherNet/IP Configuration tool for RJ71EIP91 SW1DNN-EIPCT-BD, Mitsubishi Electric Corporation EtherNet/IP Configuration tool for FX5-ENET/IP SW1DNN-EIPCTFX5-BD.

Description

Categories

CWE-549 – Missing Password Field Masking

CWE-668 – Exposure of Resource to Wrong Sphere

References

Frequently Asked Questions