Denial of Service (DoS) and Remote Code Execution Vulnerability in MITSUBISHI CNC Series
Description
Buffer overflow in Mitsubishi Electric CNC series allows remote unauthenticated attacker to cause DoS or execute arbitrary code via crafted packets.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Buffer overflow in Mitsubishi Electric CNC series allows remote unauthenticated attacker to cause DoS or execute arbitrary code via crafted packets.
Vulnerability
A classic buffer overflow vulnerability (CWE-120) exists in the communication functionality of Mitsubishi Electric CNC series products. The issue occurs when the product receives specially crafted packets without proper bounds checking on the input size. Affected models include M800VW, M800VS, M80V, M80VW (versions A8 and prior); M800W, M800S, M80, M80W, E80 (versions FB and prior); C80 (versions BF and prior); M750VW, M730VW/M720VW, M750VS, M730VS/M720VS, M70V, E70 (versions LF and prior); Remote Service Gateway Unit (versions AD and prior); and Data Acquisition Unit (all versions) [1][2].
Exploitation
An attacker can exploit this vulnerability remotely without authentication or user interaction. By sending specially crafted packets to the targeted CNC device, the attacker triggers a buffer overflow in the communication stack. No special network position or privileges are required, as the vulnerable service is exposed on the network [2].
Impact
Successful exploitation allows the attacker to cause a denial-of-service (DoS) condition and execute arbitrary code on the product. The attacker gains the ability to compromise the confidentiality, integrity, and availability of the device, potentially leading to full system compromise. After the attack, a system reset is required for recovery [1][2].
Mitigation
Mitsubishi Electric has not released a fix for all affected versions as of the publication date. Users should apply the latest firmware updates provided by the vendor for their specific model. For models where updates are unavailable, Mitsubishi Electric recommends network segmentation and restricting access to trusted networks only. Replacing the Data Acquisition Unit (all versions) may be necessary as no update is available. Refer to the vendor's advisory for detailed instructions [1][2].
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
21(expand)+ 2 more
- (no CPE)
- (no CPE)range: System Number BND-2052W000 versions A8 and prior
- (no CPE)range: System Number BND-2051W000 versions A8 and prior
System Number BND-2036W000 versions BF and prior+ 9 more
- (no CPE)range: System Number BND-2036W000 versions BF and prior
- (no CPE)range: System Number BND-1022W000 versions LF and prior
- (no CPE)range: System Number BND-2009W000 versions FB and prior
- (no CPE)range: System Number BND-1018W000 versions LF and prior
- (no CPE)range: System Number BND-2006W000 versions FB and prior
- (no CPE)range: System Number BND-2005W000 versions FB and prior
- (no CPE)range: System Number BND-2007W000 versions FB and prior
- (no CPE)range: System Number BND-2008W000 versions FB and prior
- (no CPE)range: System Number BND-2053W000 versions A8 and prior
- (no CPE)range: System Number BND-2054W000 versions A8 and prior
- Mitsubishi Electric Corporation/MITSUBISHI CNC IoT Unit Data Acquisition Unitv5Range: System Number BND-2041W002 all versions
- Mitsubishi Electric Corporation/MITSUBISHI CNC IoT Unit Remote Service Gateway Unitv5Range: System Number BND-2041W001 versions AD and prior
- Mitsubishi Electric Corporation/MITSUBISHI CNC M700V Series M720VSv5Range: System Number BND-1012W000 versions LF and prior
- Mitsubishi Electric Corporation/MITSUBISHI CNC M700V Series M720VWv5Range: System Number BND-1015W000 versions LF and prior
- Mitsubishi Electric Corporation/MITSUBISHI CNC M700V Series M730VSv5Range: System Number BND-1012W000 versions LF and prior
- Mitsubishi Electric Corporation/MITSUBISHI CNC M700V Series M730VWv5Range: System Number BND-1015W000 versions LF and prior
- Mitsubishi Electric Corporation/MITSUBISHI CNC M700V Series M750VSv5Range: System Number BND-1012W002 versions LF and prior
- Mitsubishi Electric Corporation/MITSUBISHI CNC M700V Series M750VWv5Range: System Number BND-1015W002 versions LF and prior
Patches
0No patches discovered yet.
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
3- www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-007_en.pdfmitrevendor-advisory
- jvn.jp/vu/JVNVU90352157/index.htmlmitregovernment-resource
- www.cisa.gov/news-events/ics-advisories/icsa-23-208-03mitregovernment-resource
News mentions
0No linked articles in our index yet.