CVE-2024-7316

Denial of Service (DoS) Vulnerability in Mitsubishi Electric CNC Series

Description

Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition on the product by sending specially crafted packets to TCP port 683, causing an emergency stop.

Category

5.9
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.06%
Vendor Advisory mitsubishielectric.com
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M800V Series M800VW
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M800V Series M800VS
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M80V Series M80V
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M80V Series M80VW
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M800 Series M800W
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M800 Series M800S
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M80 Series M80
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M80 Series M80W
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC E80 Series E80
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC C80 Series C80
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M720VW
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M730VW
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M750VW
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M720VS
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M730VS
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M750VS
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC M70V Series M70V
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC E70 Series E70
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC Software Tools NC Trainer2
Affected: Mitsubishi Electric Corporation Mitsubishi Electric CNC Software Tools NC Trainer2 plus
Published at:
Updated at:

References

Link Tags
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-007_en.pdf vendor advisory
https://jvn.jp/vu/JVNVU92054409/index.html government resource

Frequently Asked Questions

What is the severity of CVE-2024-7316?
CVE-2024-7316 has been scored as a medium severity vulnerability.
How to fix CVE-2024-7316?
To fix CVE-2024-7316, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-7316 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-7316 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-7316?
CVE-2024-7316 affects Mitsubishi Electric Corporation Mitsubishi Electric CNC M800V Series M800VW, Mitsubishi Electric Corporation Mitsubishi Electric CNC M800V Series M800VS, Mitsubishi Electric Corporation Mitsubishi Electric CNC M80V Series M80V, Mitsubishi Electric Corporation Mitsubishi Electric CNC M80V Series M80VW, Mitsubishi Electric Corporation Mitsubishi Electric CNC M800 Series M800W, Mitsubishi Electric Corporation Mitsubishi Electric CNC M800 Series M800S, Mitsubishi Electric Corporation Mitsubishi Electric CNC M80 Series M80, Mitsubishi Electric Corporation Mitsubishi Electric CNC M80 Series M80W, Mitsubishi Electric Corporation Mitsubishi Electric CNC E80 Series E80, Mitsubishi Electric Corporation Mitsubishi Electric CNC C80 Series C80, Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M720VW, Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M730VW, Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M750VW, Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M720VS, Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M730VS, Mitsubishi Electric Corporation Mitsubishi Electric CNC M700V Series M750VS, Mitsubishi Electric Corporation Mitsubishi Electric CNC M70V Series M70V, Mitsubishi Electric Corporation Mitsubishi Electric CNC E70 Series E70, Mitsubishi Electric Corporation Mitsubishi Electric CNC Software Tools NC Trainer2, Mitsubishi Electric Corporation Mitsubishi Electric CNC Software Tools NC Trainer2 plus.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.