CVE-2022-24946

MITRE NVD CVE.ORG JSON API Print: PDF PDF

Summary

CVECVE-2022-24946
StatePUBLISHED
AssignerMitsubishi
Source PriorityCVE Program / NVD first with legacy fallback
Published2022-06-15 21:15:09 UTC
Updated2026-06-02 20:16:28 UTC
DescriptionImproper Resource Locking vulnerability in Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions "16" and prior, Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. "24061" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. "24061" and prior, Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions, Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions, Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions, Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number "24051" and prior and Mitsubishi Electric MELIPC Series MI5122-VW firmware versions "05" and prior allows a remote unauthenticated attacker to cause a denial of service (DoS) condition in Ethernet communications by sending specially crafted packets. A system reset of the products is required for recovery.

Risk And Classification

Primary CVSS: v3.1 7.5 HIGH from [email protected]

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS: 0.004440000 probability, percentile 0.637270000 (date 2026-06-08)

Problem Types: CWE-667 | CWE-413 | Improper Resource Locking | CWE-413 CWE-413 Improper Resource Locking

VersionSourceTypeScoreSeverityVector
3.1[email protected]Primary7.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
3.1ADPDECLARED7.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
3.1134c704f-9b21-4f2e-91b3-4a467353bcc0Secondary7.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
2.0[email protected]Primary7.8AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS v3.1 Breakdown

Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2.0 Breakdown

Access Vector
Network
Access Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete

AV:N/AC:L/Au:N/C:N/I:N/A:C

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Hardware Mitsubishielectric L02cpu - All All All
Hardware Mitsubishielectric L02cpu-p - All All All
Operating System Mitsubishielectric L02cpu-p Firmware - All All All
Operating System Mitsubishielectric L02cpu Firmware - All All All
Hardware Mitsubishielectric L02scpu - All All All
Hardware Mitsubishielectric L02scpu-p - All All All
Operating System Mitsubishielectric L02scpu-p Firmware - All All All
Operating System Mitsubishielectric L02scpu Firmware - All All All
Hardware Mitsubishielectric L06cpu - All All All
Hardware Mitsubishielectric L06cpu-p - All All All
Operating System Mitsubishielectric L06cpu-p Firmware - All All All
Operating System Mitsubishielectric L06cpu Firmware - All All All
Hardware Mitsubishielectric L26cpu - All All All
Hardware Mitsubishielectric L26cpu-bt - All All All
Hardware Mitsubishielectric L26cpu-bt-cm - All All All
Operating System Mitsubishielectric L26cpu-bt-cm Firmware - All All All
Operating System Mitsubishielectric L26cpu-bt Firmware - All All All
Hardware Mitsubishielectric L26cpu-p - All All All
Hardware Mitsubishielectric L26cpu-pbt - All All All
Operating System Mitsubishielectric L26cpu-pbt Firmware - All All All
Operating System Mitsubishielectric L26cpu-p Firmware - All All All
Hardware Mitsubishielectric L26cpu-pbt - All All All
Operating System Mitsubishielectric L26cpu-pbt Firmware - All All All
Operating System Mitsubishielectric L26cpu Firmware - All All All
Hardware Mitsubishielectric Q03udecpu - All All All
Operating System Mitsubishielectric Q03udecpu Firmware - All All All
Hardware Mitsubishielectric Q04udehcpu - All All All
Operating System Mitsubishielectric Q04udehcpu Firmware - All All All
Hardware Mitsubishielectric Q04udpvcpu - All All All
Operating System Mitsubishielectric Q04udpvcpu Firmware - All All All
Hardware Mitsubishielectric Q04udvcpu - All All All
Operating System Mitsubishielectric Q04udvcpu Firmware - All All All
Hardware Mitsubishielectric Q06ccpu-v - All All All
Operating System Mitsubishielectric Q06ccpu-v Firmware - All All All
Hardware Mitsubishielectric Q06phcpu - All All All
Operating System Mitsubishielectric Q06phcpu Firmware - All All All
Hardware Mitsubishielectric Q06udehcpu - All All All
Operating System Mitsubishielectric Q06udehcpu Firmware - All All All
Hardware Mitsubishielectric Q06udpvcpu - All All All
Operating System Mitsubishielectric Q06udpvcpu Firmware - All All All
Hardware Mitsubishielectric Q06udvcpu - All All All
Operating System Mitsubishielectric Q06udvcpu Firmware - All All All
Hardware Mitsubishielectric Q100udehcpu - All All All
Operating System Mitsubishielectric Q100udehcpu Firmware - All All All
Hardware Mitsubishielectric Q10udehcpu - All All All
Operating System Mitsubishielectric Q10udehcpu Firmware - All All All
Hardware Mitsubishielectric Q13udehcpu - All All All
Operating System Mitsubishielectric Q13udehcpu Firmware - All All All
Hardware Mitsubishielectric Q13udpvcpu - All All All
Operating System Mitsubishielectric Q13udpvcpu Firmware - All All All
Hardware Mitsubishielectric Q13udvcpu - All All All
Operating System Mitsubishielectric Q13udvcpu Firmware - All All All
Hardware Mitsubishielectric Q20udehcpu - All All All
Operating System Mitsubishielectric Q20udehcpu Firmware - All All All
Hardware Mitsubishielectric Q26dhccpu-ls - All All All
Operating System Mitsubishielectric Q26dhccpu-ls Firmware - All All All
Hardware Mitsubishielectric Q26udehcpu - All All All
Operating System Mitsubishielectric Q26udehcpu Firmware - All All All
Hardware Mitsubishielectric Q26udpvcpu - All All All
Operating System Mitsubishielectric Q26udpvcpu Firmware - All All All
Hardware Mitsubishielectric Q26udvcpu - All All All
Operating System Mitsubishielectric Q26udvcpu Firmware - All All All
Hardware Mitsubishielectric Q50udehcpu - All All All
Operating System Mitsubishielectric Q50udehcpu Firmware - All All All

Vendor Declared Affected Products

SourceVendorProductVersionPlatforms
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions "16" and prior Not specified
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. "24061" and prior Not specified
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. "24061" and prior Not specified
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number "24051" and prior Not specified
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number "24051" and prior Not specified
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions Not specified
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions Not specified
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions Not specified
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number "24051" and prior Not specified
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number "24051" and prior Not specified
CNA Na Mitsubishi Electric MELSEC IQ-R Series R12CCPU-V Mitsubishi Electric MELSEC-Q Series Q03UDECPU Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-VG Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS Mitsubishi Electric MELSEC-L Series L02/06/26CPU-P Mitsubishi Electric MELSEC-L Series L26CPU-PBT Mitsubishi Electric MELIPC Series MI5122-VW affected Mitsubishi Electric MELIPC Series MI5122-VW firmware versions "05" and prior Not specified

References

ReferenceSourceLinkTags
JVNVU#90895626: 三菱電機製MELSEC QおよびLシリーズにおける不適切なリソースロックの脆弱性 af854a3a-2127-422b-91ae-364da2661108 jvn.jp Third Party Advisory
www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-007_en.pdf af854a3a-2127-422b-91ae-364da2661108 www.mitsubishielectric.com Vendor Advisory
Mitsubishi Electric MELSEC Q and L Series | CISA af854a3a-2127-422b-91ae-364da2661108 www.cisa.gov
MISC:https://jvn.jp/vu/JVNVU#90895626/index.html MITRE jvn.jp
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Legacy QID Mappings

  • 590913 Mitsubishi Electric MELSEC Q and L Series Ethernet Port Denial of Service (DoS) Vulnerability (2022-007) (ICSA-22-172-01)
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report