Mitsubishi Electric’s GENESIS64 and MC Works64 software have been identified with multiple critical vulnerabilities, posing significant security risks to industrial control systems. These vulnerabilities, cataloged under CVE-2023-2650, CVE-2023-4807, CVE-2024-1182, CVE-2024-1573, and CVE-2024-1574, include issues such as unrestricted resource allocation, improper digital signature validation, and insufficient control over file search paths. The potential consequences of these vulnerabilities include denial of service (DoS) attacks and unauthorized execution of programs, which could severely compromise the integrity and availability of industrial operations.
To address these vulnerabilities, Mitsubishi Electric recommends several proactive measures. First and foremost, users are advised to promptly apply the latest security patches available via the ICONICS Community Portal. These patches are designed to address the identified vulnerabilities and help fortify systems against potential exploits. For vulnerabilities where immediate patches are not available, implementing suggested workarounds and securing network access are vital interim steps to mitigate risks.
In addition to applying patches, organizations should adopt best practices for securing their control systems. This includes deploying firewalls to protect control system networks, restricting physical access to installed PCs, and exercising caution with email attachments and links from unknown sources. Specific guidelines for each CVE may include disabling vulnerable functions where applicable and upgrading to newer software versions that incorporate fixes for these vulnerabilities.
Mitsubishi Electric collaborates closely with security advisories and organizations like JPCERT/CC to disseminate detailed information and guidance, raising awareness and facilitating proactive measures against potential exploits. Mitsubishi Electric remains committed to supporting its customers with timely updates and comprehensive security measures.
Reference:
