Primary

Context

Mitsubishi Electric MELSEC iQ-F Series FX5-ENET/IP Ethernet Module Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the MELSEC iQ-F Series FX5-ENET/IP Ethernet Module, all versions. This vulnerability allows a remote attacker to cause a DoS condition by continuously sending UDP packets to the module, leading to exhaustion of the receive buffer. As a result, the module becomes unresponsive and requires a system reset for recovery.

Impact

Exploitation of this vulnerability leads to uncontrolled consumption of the receive buffer, causing a denial-of-service condition where the module becomes unresponsive and requires a system reset to recover.

Remediation

Users of the MELSEC iQ-F Series FX5-ENET/IP Ethernet Module should update to version 1.107 or later. For update instructions, refer to the MELSEC iQ-F FX5 User’s Manual (Application).

Added: Mar 3, 2026, 8:19 AM

Updated: Mar 3, 2026, 8:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

3.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

3.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mitsubishi Electric MELSEC iQ-F Series FX5-ENET/IP Ethernet Module Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating