Mitsubishi Electric CNC Series (Update C)
Monitor5.9ICS-CERT ICSA-24-291-03Oct 17, 2024
Attack VectorNetwork
Auth RequiredNone
ComplexityHigh
User InteractionNone needed
Summary
Mitsubishi Electric CNC Series vulnerability (CWE-1284) allows an unauthenticated remote attacker to cause a denial-of-service condition on affected devices. The vulnerability affects multiple M-series, E-series, and C-series CNC control units and trainer modules, identified by model designations M800VW, M800VS, M80V, M80VW, M800W, M800S, M80, M80W, E80, C80, M750VW, M730VW/M720VW, M750VS, M730VS/M720VS, M70V, E70, NC Trainer2, and NC Trainer2 plus.
What this means
What could happen
An attacker on the network could crash or stop the CNC control system, halting production on machining equipment or manufacturing lines that depend on these controllers.
Who's at risk
Manufacturers and machine shops using Mitsubishi Electric M-series, E-series, or C-series CNC machines (vertical mills, horizontal mills, turning centers, grinding machines) in production environments. Energy sector facilities operating these CNC systems for equipment manufacturing or maintenance.
How it could be exploited
An unauthenticated attacker with network connectivity to the CNC device can send a specially crafted network request that causes the device to become unresponsive, interrupting machine operations.
Prerequisites
- Network access to the CNC device (TCP/IP connectivity)
- No authentication credentials required
- Device is directly connected to or reachable from the attacker's network segment
Remotely exploitableNo authentication requiredNo patch available for any affected productLow EPSS score but wide installed baseCNC/machining equipment disruption
Exploitability
Low exploit probability (EPSS 0.5%)
Affected products (18)
18 pending
ProductAffected VersionsFix Status
M800VW (BND-2051W000-** ): <=B1≤ B1No fix yet
M800VS (BND-2052W000-** ): <=B1≤ B1No fix yet
M80V (BND-2053W000-** ): <=B1≤ B1No fix yet
M80VW (BND-2054W000-** ): <=B1≤ B1No fix yet
M800W (BND-2005W000-** ): <=FH≤ FHNo fix yet
Remediation & Mitigation
0/21
Do now
0/4HARDENINGEnable IP filter function on M800V/M80V Series and M800/M80/E80 Series to block access from untrusted hosts (see product manuals section 16.Appendix 3 or 15.Appendix 2)
HARDENINGUse firewall rules to prevent unauthorized network access to the CNC device; block CNC device ports from untrusted networks and hosts
HARDENINGInstall anti-virus software on any engineering PC that can access the CNC product
HARDENINGUse a VPN or air-gap approach for remote access to CNC devices if Internet connectivity is required
Schedule — requires maintenance window
0/16Patching may require device reboot — plan for process interruption
HOTFIXUpdate M800VW (BND-2051W000-**) to firmware version B2 or later
HOTFIXUpdate M800VS (BND-2052W000-**) to firmware version B2 or later
HOTFIXUpdate M80V (BND-2053W000-**) to firmware version B2 or later
HOTFIXUpdate M80VW (BND-2054W000-**) to firmware version B2 or later
HOTFIXUpdate M800W (BND-2005W000-**) to firmware version FJ or later
HOTFIXUpdate M800S (BND-2006W000-**) to firmware version FJ or later
HOTFIXUpdate M80 (BND-2007W000-**) to firmware version FJ or later
HOTFIXUpdate M80W (BND-2008W000-**) to firmware version FJ or later
HOTFIXUpdate E80 (BND-2009W000-**) to firmware version FJ or later
HOTFIXUpdate C80 (BND-2036W000-**) to firmware version BK or later
HOTFIXUpdate M750VW (BND-1015W002-**) to firmware version LH or later
HOTFIXUpdate M730VW/M720VW (BND-1015W000-**) to firmware version LH or later
HOTFIXUpdate M750VS (BND-1012W002-**) to firmware version LH or later
HOTFIXUpdate M730VS/M720VS (BND-1012W000-**) to firmware version LH or later
HOTFIXUpdate M70V (BND-1018W000-**) to firmware version LH or later
HOTFIXUpdate E70 (BND-1022W000-**) to firmware version LH or later
Long-term hardening
0/1HARDENINGRestrict physical access to the CNC control unit and the LAN infrastructure to which it connects
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/a6894a9f-b664-4583-ad17-9257d2591b0e