MidnightBSD

Advisories for fanuc

CVE-2020-12739 MEDIUM

A denial-of-service vulnerability in the Fanuc i Series CNC (0i-MD and 0i Mate-MD) could allow an unauthenticated, remote attacker to cause an affected CNC to become inaccessible to other devices.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
fanuc series_0i-model_f_firmware -
fanuc power_motion_i-model_a_firmware -
fanuc series_30i_firmware -
fanuc series_35i-b_firmware -
fanuc series_0i-mate_d_firmware -
fanuc series_16i_firmware -
fanuc series_0i-model_d_firmware -
fanuc series_21i-model_b_firmware -
fanuc series_18i-wb_firmware -
fanuc series_31i_firmware -
fanuc series_32i-model_a_firmware -
fanuc series_18i_firmware -
fanuc series_0i-model_c_firmware -
fanuc series_0i-model_f_plus_firmware -
fanuc series_32i-b_plus_firmware -
fanuc series_0i-model_b_firmware -
CVE-2021-32996 HIGH

The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which cause the device to crash. A restart is required.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-192,CWE-681,

Products Affected

Vendor Product Version
fanuc r-30ia_mate_firmware 7.40
fanuc r-30ib_mate_firmware 8.30
fanuc r-30ib_mate_plus_firmware 9.40
fanuc r-30ib_mate_firmware 8.26
fanuc r-30ib_compact_firmware 8.33
fanuc r-30ib_mate_firmware 8.10
fanuc r-30ib_compact_plus_firmware 9.30
fanuc r-30ib_plus_firmware 9.13
fanuc r-30ia_firmware 7.70
fanuc r-30ib_mate_plus_firmware 9.36
fanuc r-30ia_firmware 7.20
fanuc r-30ib_mate_firmware 8.20
fanuc r-30ib_firmware 8.10
fanuc r-30ib_firmware 8.36
fanuc r-30ib_mate_firmware 8.13
fanuc r-30ib_compact_plus_firmware 9.16
fanuc r-30ib_mate_firmware 8.36
fanuc r-30ib_firmware 8.33
fanuc r-30ia_mate_firmware 7.30
fanuc r-30ia_firmware 7.43
fanuc r-30ib_mini_plus_firmware 9.36
fanuc r-30ib_mate_plus_firmware 9.10
fanuc r-30ib_plus_firmware 9.16
fanuc r-30ib_plus_firmware 9.40
fanuc r-30ib_mate_plus_firmware 9.13
fanuc r-30ib_mate_plus_firmware 9.30
fanuc r-30ib_mini_plus_firmware 9.16
fanuc r-30ib_compact_firmware 8.20
fanuc r-30ib_mate_firmware 8.23
fanuc r-30ib_mate_firmware 8.33
fanuc r-30ib_firmware 8.23
fanuc r-30ib_mini_plus_firmware 9.40
fanuc r-30ib_firmware 8.30
fanuc r-30ib_compact_firmware 8.10
fanuc r-30ib_plus_firmware 9.36
fanuc r-30ib_mini_plus_firmware 9.10
fanuc r-30ib_firmware 8.26
fanuc r-30ib_mate_plus_firmware 9.16
fanuc r-30ia_firmware 7.30
fanuc r-30ib_compact_plus_firmware 9.10
fanuc r-30ia_firmware 7.40
fanuc r-30ib_compact_firmware 8.13
fanuc r-30ib_compact_plus_firmware 9.40
fanuc r-30ia_mate_firmware 7.50
fanuc r-30ia_mate_firmware 7.63
fanuc r-30ia_firmware 7.50
fanuc r-30ia_firmware 7.63
fanuc r-30ib_mini_plus_firmware 9.30
fanuc r-30ib_plus_firmware 9.10
fanuc r-30ia_mate_firmware 7.70
fanuc r-30ib_plus_firmware 9.30
fanuc r-30ib_compact_plus_firmware 9.36
fanuc r-30ib_mini_plus_firmware 9.13
fanuc r-30ia_mate_firmware 7.20
fanuc r-30ib_compact_firmware 8.30
fanuc r-30ib_compact_plus_firmware 9.13
fanuc r-30ia_mate_firmware 7.43
fanuc r-30ib_firmware 8.20
fanuc r-30ib_compact_firmware 8.23
fanuc r-30ib_compact_firmware 8.26
fanuc r-30ib_compact_firmware 8.36
fanuc r-30ib_firmware 8.13
CVE-2021-32998 HIGH

The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.4 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H 2.2 5.2

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,CWE-787,

Products Affected

Vendor Product Version
fanuc r-30ia_mate_firmware 7.40
fanuc r-30ib_mate_firmware 8.30
fanuc r-30ib_mate_plus_firmware 9.40
fanuc r-30ib_mate_firmware 8.26
fanuc r-30ib_compact_firmware 8.33
fanuc r-30ib_mate_firmware 8.10
fanuc r-30ib_compact_plus_firmware 9.30
fanuc r-30ib_plus_firmware 9.13
fanuc r-30ia_firmware 7.70
fanuc r-30ib_mate_plus_firmware 9.36
fanuc r-30ia_firmware 7.20
fanuc r-30ib_mate_firmware 8.20
fanuc r-30ib_firmware 8.10
fanuc r-30ib_firmware 8.36
fanuc r-30ib_mate_firmware 8.13
fanuc r-30ib_compact_plus_firmware 9.16
fanuc r-30ib_mate_firmware 8.36
fanuc r-30ib_firmware 8.33
fanuc r-30ia_mate_firmware 7.30
fanuc r-30ia_firmware 7.43
fanuc r-30ib_mini_plus_firmware 9.36
fanuc r-30ib_mate_plus_firmware 9.10
fanuc r-30ib_plus_firmware 9.16
fanuc r-30ib_plus_firmware 9.40
fanuc r-30ib_mate_plus_firmware 9.13
fanuc r-30ib_mate_plus_firmware 9.30
fanuc r-30ib_mini_plus_firmware 9.16
fanuc r-30ib_compact_firmware 8.20
fanuc r-30ib_mate_firmware 8.23
fanuc r-30ib_mate_firmware 8.33
fanuc r-30ib_firmware 8.23
fanuc r-30ib_mini_plus_firmware 9.40
fanuc r-30ib_firmware 8.30
fanuc r-30ib_compact_firmware 8.10
fanuc r-30ib_plus_firmware 9.36
fanuc r-30ib_mini_plus_firmware 9.10
fanuc r-30ib_firmware 8.26
fanuc r-30ib_mate_plus_firmware 9.16
fanuc r-30ia_firmware 7.30
fanuc r-30ib_compact_plus_firmware 9.10
fanuc r-30ia_firmware 7.40
fanuc r-30ib_compact_firmware 8.13
fanuc r-30ib_compact_plus_firmware 9.40
fanuc r-30ia_mate_firmware 7.50
fanuc r-30ia_mate_firmware 7.63
fanuc r-30ia_firmware 7.50
fanuc r-30ia_firmware 7.63
fanuc r-30ib_mini_plus_firmware 9.30
fanuc r-30ib_plus_firmware 9.10
fanuc r-30ia_mate_firmware 7.70
fanuc r-30ib_plus_firmware 9.30
fanuc r-30ib_compact_plus_firmware 9.36
fanuc r-30ib_mini_plus_firmware 9.13
fanuc r-30ia_mate_firmware 7.20
fanuc r-30ib_compact_firmware 8.30
fanuc r-30ib_compact_plus_firmware 9.13
fanuc r-30ia_mate_firmware 7.43
fanuc r-30ib_firmware 8.20
fanuc r-30ib_compact_firmware 8.23
fanuc r-30ib_compact_firmware 8.26
fanuc r-30ib_compact_firmware 8.36
fanuc r-30ib_firmware 8.13
CVE-2021-38483 LOW

The affected product is vulnerable to misconfigured binaries, allowing users on the target PC with SYSTEM level privileges access to overwrite the binary and modify files to gain privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H 0.5 5.2
ics-cert@hq.dhs.gov 6.0 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H 0.8 5.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-732,

Products Affected

Vendor Product Version
fanuc roboguide *
CVE-2021-43933 MEDIUM

The affected product is vulnerable to a network-based attack by threat actors sending unimpeded requests to the receiving server, which could cause a denial-of-service condition due to lack of heap memory resources.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6
ics-cert@hq.dhs.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:H 1.6 4.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
fanuc roboguide *
CVE-2021-43986 MEDIUM

The setup program for the affected product configures its files and folders with full access, which may allow unauthorized users permission to replace original binaries and achieve privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
ics-cert@hq.dhs.gov 6.0 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H 0.8 5.2
nvd@nist.gov 7.0 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H 1.0 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,CWE-276,

Products Affected

Vendor Product Version
fanuc roboguide *
CVE-2021-43988 MEDIUM

The affected product is vulnerable to a network-based attack by threat actors utilizing crafted naming conventions of files to gain unauthorized access rights.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6
ics-cert@hq.dhs.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:H 1.6 4.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fanuc roboguide *
CVE-2021-43990 LOW

The affected product is vulnerable to a network-based attack by threat actors supplying a crafted, malicious XML payload designed to trigger an external entity reference call.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
ics-cert@hq.dhs.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:N/A:H 1.6 4.0
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H 1.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-611,

Products Affected

Vendor Product Version
fanuc roboguide *
CVE-2023-1864

FANUC ROBOGUIDE-HandlingPRO Versions 9 Rev.ZD and prior is vulnerable to a path traversal, which could allow an attacker to remotely read files on the system running the affected software.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
ics-cert@hq.dhs.gov 6.8 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N 2.2 4.0

Products Affected

Vendor Product Version
fanuc roboguide_handlingpro_firmware *