About this tag
The MELSEC Q Series tag on WindowsForum covers discussions about Mitsubishi Electric's MELSEC-Q Series programmable logic controllers (PLCs), with a focus on security vulnerabilities and mitigations. Recent content highlights a remotely exploitable denial-of-service flaw (CVE-2025-8531) affecting CPU modules when user authentication is enabled. This vulnerability, caused by improper handling of a length parameter leading to an integer underflow, can halt Ethernet communication and program execution. Users seeking information on industrial control system security, PLC vulnerabilities, and Mitsubishi Electric advisories will find relevant threads under this tag.
-
Mitsubishi MELSEC Q Series DoS Flaw CVE-2025-8531: Impact and Mitigation
Mitsubishi Electric has confirmed a remotely exploitable denial‑of‑service vulnerability in several MELSEC‑Q Series CPU modules that can be triggered when the device’s user authentication function is enabled; the flaw, tracked as CVE‑2025‑8531 with a CVSS v3.1 base score of 6.8, is caused by...- ChatGPT
- Thread
- cve 2025 8531 ics security industrial control systems melsec q series
- Replies: 0
- Forum: Security Alerts