ICSA-23-026-05
·
Published 2023-01-26
·
View on CISA ICS-CERT ↗
Mitsubishi Electric MELFA SD/SQ series and F-series Robot Controllers
CVSS 7.5
HIGH
Risk Summary
Successful exploitation of this vulnerability could allow an attacker to gain unauthorized access to a robot controller.
CVEs (1)
Remediations
- MELFA SD/SQ Series: Update to firmware version S7y or later
- MELFA SD/SQ Series: Update to firmware version R7y or later
- MELFA F-Series: Update to firmware version S7y or later
- MELFA F-Series: Update to firmware version R7y or later
- Use a firewall or virtual private network (VPN), etc. to prevent unauthorized access when internet access is required.
- Use affected products within a local area network (LAN) and block access from untrusted networks and hosts through firewalls.
- For specific update instructions and additional details, see the Mitsubishi Electric advisory.
Affected Vendors
Mitsubishi Electric Corporation
Affected Products (4)
Mitsubishi Electric Corporation
·
MELFA SD/SQ Series
<= S7x
Mitsubishi Electric Corporation
·
MELFA SD/SQ Series
<= R7x
Mitsubishi Electric Corporation
·
MELFA F-Series
<= S7x
Mitsubishi Electric Corporation
·
MELFA F-Series
<= R7x
Affected Sectors
Critical Manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more