MidnightBSD

Advisories for mitsubishielectric

CVE-2013-2817 HIGH

An ActiveX control in IcoLaunch.dll in Mitsubishi Electric Automation MC-WorX Suite 8.02 allows user-assisted remote attackers to execute arbitrary programs via a crafted HTML document in conjunction with a Login Client button click.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
mitsubishielectric mc-worx_suite *
CVE-2016-8368 MEDIUM

An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. The affected Ethernet interface module is connected to a MELSEC-Q PLC, which may allow a remote attacker to connect to the PLC via Port 5002/TCP and cause a denial of service, requiring the PLC to be reset to resume operation. This is caused by an Unrestricted Externally Accessible Lock.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.6 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H 3.9 4.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-662,

Products Affected

Vendor Product Version
mitsubishielectric qj71e71-100_firmware -
mitsubishielectric qj71e71-b5_firmware -
mitsubishielectric qj71e71-b2_firmware -
CVE-2016-8370 MEDIUM

An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. Weakly encrypted passwords are transmitted to a MELSEC-Q PLC.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,

Products Affected

Vendor Product Version
mitsubishielectric qj71e71-100_firmware -
mitsubishielectric qj71e71-b5_firmware -
mitsubishielectric qj71e71-b2_firmware -
CVE-2017-9634 HIGH

Mitsubishi E-Designer, Version 7.52 Build 344 contains two code sections which may be exploited to allow an attacker to overwrite arbitrary memory locations. This can result in arbitrary code execution, compromised data integrity, denial of service, and system crash.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,CWE-787,

Products Affected

Vendor Product Version
mitsubishielectric e-designer 7.52
CVE-2017-9636 HIGH

Mitsubishi E-Designer, Version 7.52 Build 344 contains five code sections which may be exploited to overwrite the heap. This can result in arbitrary code execution, compromised data integrity, denial of service, and system crash.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-122,CWE-119,

Products Affected

Vendor Product Version
mitsubishielectric e-designer 7.52
CVE-2017-9638 HIGH

Mitsubishi E-Designer, Version 7.52 Build 344 contains six code sections which may be exploited to overwrite the stack. This can result in arbitrary code execution, compromised data integrity, denial of service, and system crash.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-121,CWE-119,

Products Affected

Vendor Product Version
mitsubishielectric e-designer 7.52
CVE-2018-16060 MEDIUM

Mitsubishi Electric Europe B.V. SmartRTU devices allow remote attackers to obtain sensitive information (directory listing and source code) via a direct request to the /web URI.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-425,

Products Affected

Vendor Product Version
mitsubishielectric smartrtu_firmware -
CVE-2018-16061 MEDIUM

Mitsubishi Electric Europe B.V. SmartRTU devices allow XSS via the username parameter or PATH_INFO to login.php.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mitsubishielectric smartrtu_firmware -
CVE-2019-10972 HIGH

Mitsubishi Electric FR Configurator2, Version 1.16S and prior. This vulnerability can be triggered when an attacker provides the target with a rogue project file (.frc2). Once a user opens the rogue project, CPU exhaustion occurs, which causes the software to quit responding until the application is restarted.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,CWE-770,

Products Affected

Vendor Product Version
mitsubishielectric electric_fr_configurator2 *
CVE-2019-10976 MEDIUM

Mitsubishi Electric FR Configurator2, Version 1.16S and prior. This vulnerability is triggered when input passed to the XML parser is not sanitized while parsing the XML project and/or template file (.frc2). Once a user opens the file, the attacker could read arbitrary files.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-611,CWE-611,

Products Affected

Vendor Product Version
mitsubishielectric electric_fr_configurator2_firmware *
CVE-2019-10977 HIGH

In Mitsubishi Electric MELSEC-Q series Ethernet module QJ71E71-100 serial number 20121 and prior, an attacker could send crafted TCP packets against the FTP service, forcing the target devices to enter an error mode and cause a denial-of-service condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,CWE-755,

Products Affected

Vendor Product Version
mitsubishielectric qj71e71-100_firmware *
CVE-2019-13555 MEDIUM

In Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior, MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior, a remote attacker can cause the FTP service to enter a denial-of-service condition dependent on the timing at which a remote attacker connects to the FTP server on the above CPU modules.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric l02/06/26cpu_firmware *
mitsubishielectric l26cpu-bt-cm_firmware *
mitsubishielectric q03/04/06/13/26udvcpu_firmware *
mitsubishielectric q04/06/10/13/20/26/50/100udehcpu_firmware *
mitsubishielectric l26cpu-pbt_firmware *
mitsubishielectric q03udecpu_firmware *
mitsubishielectric l26cpu-bt_firmware *
mitsubishielectric q04/06/13/26udpvcpu_firmware *
mitsubishielectric l02/06/26cpu-cm_firmware *
mitsubishielectric l02/06/26cpu-p_firmware *
CVE-2019-14925 MEDIUM

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. A world-readable /usr/smartrtu/init/settings.xml configuration file on the file system allows an attacker to read sensitive configuration settings such as usernames, passwords, and other sensitive RTU data due to insecure permission assignment.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
inea me-rtu_firmware *
mitsubishielectric smartrtu_firmware *
CVE-2019-14926 HIGH

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Hard-coded SSH keys allow an attacker to gain unauthorised access or disclose encrypted data on the RTU due to the keys not being regenerated on initial installation or with firmware updates. In other words, these devices use private-key values in /etc/ssh/ssh_host_rsa_key, /etc/ssh/ssh_host_ecdsa_key, and /etc/ssh/ssh_host_dsa_key files that are publicly available from the vendor web sites.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-798,

Products Affected

Vendor Product Version
inea me-rtu_firmware *
mitsubishielectric smartrtu_firmware *
CVE-2019-14927 MEDIUM

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. An unauthenticated remote configuration download vulnerability allows an attacker to download the smartRTU's configuration file (which contains data such as usernames, passwords, and other sensitive RTU data).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,CWE-425,

Products Affected

Vendor Product Version
inea me-rtu_firmware *
mitsubishielectric smartrtu_firmware *
CVE-2019-14928 LOW

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. A number of stored cross-site script (XSS) vulnerabilities allow an attacker to inject malicious code directly into the application. An example input variable vulnerable to stored XSS is SerialInitialModemString in the index.php page.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
inea me-rtu_firmware *
mitsubishielectric smartrtu_firmware *
CVE-2019-14929 MEDIUM

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Stored cleartext passwords could allow an unauthenticated attacker to obtain configured username and password combinations on the RTU due to the weak credentials management on the RTU. An unauthenticated user can obtain the exposed password credentials to gain access to the following services: DDNS service, Mobile Network Provider, and OpenVPN service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-522,

Products Affected

Vendor Product Version
inea me-rtu_firmware *
mitsubishielectric smartrtu_firmware *
CVE-2019-14930 HIGH

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Undocumented hard-coded user passwords for root, ineaadmin, mitsadmin, and maint could allow an attacker to gain unauthorised access to the RTU. (Also, the accounts ineaadmin and mitsadmin are able to escalate privileges to root without supplying a password due to insecure entries in /etc/sudoers on the RTU.)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-798,

Products Affected

Vendor Product Version
inea me-rtu_firmware *
mitsubishielectric smartrtu_firmware *
CVE-2019-14931 HIGH

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. An unauthenticated remote OS Command Injection vulnerability allows an attacker to execute arbitrary commands on the RTU due to the passing of unsafe user supplied data to the RTU's system shell. Functionality in mobile.php provides users with the ability to ping sites or IP addresses via Mobile Connection Test. When the Mobile Connection Test is submitted, action.php is called to execute the test. An attacker can use a shell command separator (;) in the host variable to execute operating system commands upon submitting the test data.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
inea me-rtu_firmware *
mitsubishielectric smartrtu_firmware *
CVE-2019-6535 MEDIUM

Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet stack crash and disruption to USB communication.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric q04udvcpu_firmware *
mitsubishielectric q04udpvcpu_firmware *
mitsubishielectric q20udehcpu_firmware *
mitsubishielectric q100udehcpu_firmware *
mitsubishielectric q06udvcpu_firmware *
mitsubishielectric q03udecpu_firmware *
mitsubishielectric q26udvcpu_firmware *
mitsubishielectric q13udpvcpu_firmware *
mitsubishielectric q26udpvcpu_firmware *
mitsubishielectric q50udehcpu_firmware *
mitsubishielectric q26udehcpu_firmware *
mitsubishielectric q03udvcpu_firmware *
mitsubishielectric q06udpvcpu_firmware *
mitsubishielectric q10udehcpu_firmware *
mitsubishielectric q06udehcpu_firmware *
mitsubishielectric q13udvcpu_firmware *
mitsubishielectric q13udehcpu_firmware *
mitsubishielectric q04udehcpu_firmware *
CVE-2020-12007 HIGH

A specially crafted communication packet sent to the affected devices could allow remote code execution and a denial-of-service condition due to a deserialization vulnerability. This issue affects: Mitsubishi Electric MC Works64 version 4.02C (10.95.208.31) and earlier, all versions; Mitsubishi Electric MC Works32 version 3.00A (9.50.255.02); ICONICS GenBroker64, Platform Services, Workbench, FrameWorX Server version 10.96 and prior; ICONICS GenBroker32 version 9.5 and prior.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-502,CWE-502,

Products Affected

Vendor Product Version
iconics energy_analytix -
iconics mobilehmi -
mitsubishielectric mc_works32 9.50.255.02
iconics smart_energy_analytix -
iconics genesis32 -
iconics genesis64 -
iconics quality_analytix -
iconics bizviz -
mitsubishielectric mc_works *
iconics hyper_historian -
iconics facility_analytix -
CVE-2020-12009 MEDIUM

A specially crafted communication packet sent to the affected device could cause a denial-of-service condition due to a deserialization vulnerability. This affects: Mitsubishi Electric MC Works64 Version 4.02C (10.95.208.31) and earlier, all versions; Mitsubishi Electric MC Works32 Version 3.00A (9.50.255.02); ICONICS GenBroker64, Platform Services, Workbench, FrameWorX Server v10.96 and prior; ICONICS GenBroker32 v9.5 and prior.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-502,CWE-502,

Products Affected

Vendor Product Version
iconics energy_analytix -
iconics mobilehmi -
mitsubishielectric mc_works32 9.50.255.02
iconics smart_energy_analytix -
iconics genesis32 -
iconics genesis64 -
iconics quality_analytix -
iconics bizviz -
mitsubishielectric mc_works *
iconics hyper_historian -
iconics facility_analytix -
CVE-2020-12011 HIGH

A specially crafted communication packet sent to the affected systems could cause a denial-of-service condition or allow remote code execution. This issue affects: Mitsubishi Electric MC Works64 version 4.02C (10.95.208.31) and earlier, all versions; MC Works32 version 3.00A (9.50.255.02); ICONICS GenBroker64, Platform Services, Workbench, FrameWorX Server version 10.96 and prior; GenBroker32 version 9.5 and prior.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,CWE-787,

Products Affected

Vendor Product Version
iconics energy_analytix -
iconics mobilehmi -
mitsubishielectric mc_works32 9.50.255.02
iconics smart_energy_analytix -
iconics genesis32 -
iconics genesis64 -
iconics quality_analytix -
iconics bizviz -
mitsubishielectric mc_works *
iconics hyper_historian -
iconics facility_analytix -
CVE-2020-12013 MEDIUM

A specially crafted WCF client that interfaces to the may allow the execution of certain arbitrary SQL commands remotely. This affects: Mitsubishi Electric MC Works64 Version 4.02C (10.95.208.31) and earlier, all versions; Mitsubishi Electric MC Works32 Version 3.00A (9.50.255.02); ICONICS GenBroker64, Platform Services, Workbench, FrameWorX Server v10.96 and prior; ICONICS GenBroker32 v9.5 and prior.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,CWE-89,

Products Affected

Vendor Product Version
iconics energy_analytix -
iconics mobilehmi -
mitsubishielectric mc_works64 *
mitsubishielectric mc_works32 9.50.255.02
iconics smart_energy_analytix -
iconics genesis32 -
iconics genesis64 -
iconics quality_analytix -
iconics bizviz -
iconics hyper_historian -
iconics facility_analytix -
CVE-2020-12015 MEDIUM

A specially crafted communication packet sent to the affected systems could cause a denial-of-service condition due to improper deserialization. This issue affects: Mitsubishi Electric MC Works64 version 4.02C (10.95.208.31) and earlier, all versions; Mitsubishi Electric MC Works32 version 3.00A (9.50.255.02); ICONICS GenBroker64, Platform Services, Workbench, FrameWorX Server version 10.96 and prior; ICONICS GenBroker32 version 9.5 and prior.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-502,CWE-502,

Products Affected

Vendor Product Version
iconics energy_analytix -
iconics mobilehmi -
mitsubishielectric mc_works32 9.50.255.02
iconics smart_energy_analytix -
iconics genesis32 -
iconics genesis64 -
iconics quality_analytix -
iconics bizviz -
mitsubishielectric mc_works *
iconics hyper_historian -
iconics facility_analytix -
CVE-2020-13238 HIGH

Mitsubishi MELSEC iQ-R Series PLCs with firmware 33 allow attackers to halt the industrial process by sending an unauthenticated crafted packet over the network, because this denial of service attack consumes excessive CPU time. After halting, physical access to the PLC is required in order to restore production.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-r32pcpu_firmware *
mitsubishielectric melsec_iq-r120sfcpu_firmware *
mitsubishielectric melsec_iq-r00cpu_firmware *
mitsubishielectric melsec_iq-r32fcpu_firmware *
mitsubishielectric melsec_iq-r120cpu_firmware *
mitsubishielectric melsec_iq-r04cpu_firmware *
mitsubishielectric melsec_iq-rj71en71_firmware *
mitsubishielectric melsec_iq-r120pcpu_firmware *
mitsubishielectric melsec_iq-r32cpu_firmware *
mitsubishielectric melsec_iq-r16pcpu_firmware *
mitsubishielectric melsec_iq-r02cpu_firmware *
mitsubishielectric melsec_iq-r16fcpu_firmware *
mitsubishielectric melsec_iq-r08cpu_firmware *
mitsubishielectric melsec_iq-r08pcpu_firmware *
mitsubishielectric melsec_iq-r120fcpu_firmware *
mitsubishielectric melsec_iq-r01cpu_firmware *
mitsubishielectric melsec_iq-r16cpu_firmware *
mitsubishielectric melsec_iq-r16sfcpu_firmware *
mitsubishielectric melsec_iq-r32sfcpu_firmware *
mitsubishielectric melsec_iq-r08sfcpu_firmware *
mitsubishielectric melsec_iq-r08fcpu_firmware *
CVE-2020-14496 HIGH

Successful exploitation of this vulnerability for multiple Mitsubishi Electric Factory Automation Engineering Software Products of various versions could allow an attacker to escalate privilege and execute malicious programs, which could cause a denial-of-service condition, and allow information to be disclosed, tampered with, and/or destroyed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
ics-cert@hq.dhs.gov 8.3 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H 1.6 6.0
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-275,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mitsubishielectric m_commdtm-hart *
mitsubishielectric cw_configurator *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric em_configurator *
mitsubishielectric fr_configurator2 *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric melsoft_fielddeviceconfigurator *
mitsubishielectric px_developer *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric network_interface_board_cc_ie_control_utility *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric motorizer *
mitsubishielectric mh11_settingtool_version2 *
mitsubishielectric network_interface_board_cc-link_ver.2_utility *
mitsubishielectric ezsocket *
mitsubishielectric gt_designer3 *
mitsubishielectric network_interface_board_mneth_utility *
mitsubishielectric network_interface_board_cc_ie_field_utility *
mitsubishielectric mt_works2 *
mitsubishielectric m_commdtm-io-link *
mitsubishielectric melfa-works *
mitsubishielectric rt_toolbox2 *
mitsubishielectric melsoft_navigator *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2020-14521 HIGH

Multiple Mitsubishi Electric Factory Automation engineering software products have a malicious code execution vulnerability. A malicious attacker could use this vulnerability to obtain information, modify information, and cause a denial-of-service condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
ics-cert@hq.dhs.gov 8.3 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H 1.6 6.0
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-428,CWE-276,

Products Affected

Vendor Product Version
mitsubishielectric slmp_data_collector *
mitsubishielectric cc-link_ie_field_network_data_collector 1.00a
mitsubishielectric cw_configurator *
mitsubishielectric mx_mesinterface *
mitsubishielectric network_interface_board_mneth_utility_firmware *
mitsubishielectric position_board_utility_2 *
mitsubishielectric mx_component *
mitsubishielectric setting/monitoring_tools_for_the_c_controller_module *
mitsubishielectric rt_toolbox3 *
mitsubishielectric gt_designer2_classic *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric melsoft_em_software_development_kit *
mitsubishielectric melsec_wincpu_setting_utility *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric c_controller_module_setting_and_monitoring_tool *
mitsubishielectric px_developer *
mitsubishielectric c_controller_interface_module_utility *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric motorizer *
mitsubishielectric network_interface_board_cc-link_ver.2_utility_firmware *
mitsubishielectric network_interface_board_cc_ie_control_utility_firmware *
mitsubishielectric cc-link_ie_control_network_data_collector 1.00a
mitsubishielectric cc-link_ie_tsn_data_collector 1.00a
mitsubishielectric ezsocket *
mitsubishielectric gt_designer3 *
mitsubishielectric mt_works2 *
mitsubishielectric mx_mesinterface-r *
mitsubishielectric motion_control_setting *
mitsubishielectric melsoft_iq_appportal *
mitsubishielectric m_commdtm-io-link *
mitsubishielectric melfa-works *
mitsubishielectric mi_configurator *
mitsubishielectric rt_toolbox2 *
mitsubishielectric melsoft_complete_clean_up_tool *
mitsubishielectric mtconnect_data_collector *
mitsubishielectric network_interface_board_cc_ie_field_utility_firmware *
mitsubishielectric mx_sheet *
mitsubishielectric melsoft_navigator *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2020-14523 HIGH

Multiple Mitsubishi Electric Factory Automation products have a vulnerability that allows an attacker to execute arbitrary code.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
ics-cert@hq.dhs.gov 8.3 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H 1.6 6.0

CVSS 2.0

Severity: HIGH

Problem Type: CWE-22,CWE-22,

Products Affected

Vendor Product Version
mitsubishielectric gx_works2 *
mitsubishielectric cw_configurator *
mitsubishielectric mr_configurator2 *
mitsubishielectric rd78ghv_firmware *
mitsubishielectric rd78g32_firmware *
mitsubishielectric iu_developer2 *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric rd78g8_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric mt_works2 *
mitsubishielectric rd78g16_firmware *
mitsubishielectric melsoft_iq_appportal *
mitsubishielectric rd78g64_firmware *
mitsubishielectric rd78ghw_firmware *
mitsubishielectric mi_configurator *
mitsubishielectric gx_works3 *
mitsubishielectric melsoft_navigator *
mitsubishielectric rd78g4_firmware *
mitsubishielectric iu_configuration_tool *
CVE-2020-16226 HIGH

Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-342,

Products Affected

Vendor Product Version
mitsubishielectric fx5uc-32mt/dss_firmware 1.210
mitsubishielectric qj71mes96_firmware *
mitsubishielectric qnudvcpu(n=03/04/06/13/26)_firmware *
mitsubishielectric lj71e71-100_firmware *
mitsubishielectric qj71mt91_firmware *
mitsubishielectric nz2gacp620-300_firmware *
mitsubishielectric fr-f842-e_firmware *
mitsubishielectric rj71gn11-t2_firmware *
mitsubishielectric fx5uc-32mt/ds-ts_firmware 1.210
mitsubishielectric rnpcpu(n=08/16/32/120)_firmware *
mitsubishielectric fx5uj-24mt/ess_firmware 1.000
mitsubishielectric fx3g-14mt/ess_firmware *
mitsubishielectric fx3g-14mr/ds_firmware *
mitsubishielectric fx3u-enet-l_firmware *
mitsubishielectric fx5uj-60mt/ess_firmware 1.000
mitsubishielectric fx3g-40mr/es_firmware *
mitsubishielectric fx5uc-32mr/ds-ts_firmware 1.210
mitsubishielectric fr-f820-e_firmware *
mitsubishielectric fx5uj-24mt/es_firmware 1.000
mitsubishielectric fx5uj-60mt/es_firmware 1.000
mitsubishielectric fx5uj-40mt/es_firmware 1.000
mitsubishielectric q24dhccpu-v_firmware *
mitsubishielectric rd78ghw_firmware *
mitsubishielectric fx5-enet/ip_firmware *
mitsubishielectric fx3u-enet-p502_firmware *
mitsubishielectric rncpu(n=00/01/02)t_firmware *
mitsubishielectric fx3u-enet_firmware *
mitsubishielectric fx3g-24mr/ds_firmware *
mitsubishielectric fx3g-60mt/ess_firmware *
mitsubishielectric fx5uj-40mt/ess_firmware 1.000
mitsubishielectric fr-a862-e_firmware *
mitsubishielectric q03udecpu_firmware *
mitsubishielectric fr-f860-e_firmware *
mitsubishielectric conveyor_tracking_application_apr-ntr20fh(n=1,2) -
mitsubishielectric rnencpu(n=04/08/16/32/120)_firmware *
mitsubishielectric rd55up06-v_firmware *
mitsubishielectric mr-j4-tm_firmware *
mitsubishielectric q24dhccpu-vg_firmware *
mitsubishielectric rj71en71_firmware *
mitsubishielectric fr-a860-e_firmware *
mitsubishielectric conveyor_tracking_application_apr-ntr12fh -
mitsubishielectric qnudehcpu(n=04/06/10/13/20/26/50/100)_firmware *
mitsubishielectric qj71ws96_firmware *
mitsubishielectric l26cpu-(p)bt_firmware *
mitsubishielectric nz2ft-eip_firmware *
mitsubishielectric rd78ghv_firmware *
mitsubishielectric rd55up12-v_firmware *
mitsubishielectric fx5uj-40mr/es_firmware 1.000
mitsubishielectric conveyor_tracking_application_apr-ntr6fh -
mitsubishielectric rnpsfcpu(n=08/16/32/120)_firmware *
mitsubishielectric nz2gacp620-60_firmware *
mitsubishielectric fr-a842-e_firmware *
mitsubishielectric fr-f840-e_firmware *
mitsubishielectric rnsfcpu_(n=08/16/32/120)_firmware *
mitsubishielectric fx3g-24mt/ess_firmware *
mitsubishielectric got2000_series_gt21_firmware *
mitsubishielectric r12ccpu-v_firmware *
mitsubishielectric qj71e71-100_firmware *
mitsubishielectric fx3g-14mt/dss_firmware *
mitsubishielectric fx5-enet_firmware *
mitsubishielectric gt25-j71gn13-t2_firmware *
mitsubishielectric rd78gn(n=4,8,16,32,64)_firmware *
mitsubishielectric fx3g-14mr/es_firmware *
mitsubishielectric nz2ft-mt_firmware *
mitsubishielectric fx3g-40mt/ess_firmware *
mitsubishielectric fx5uj-60mr/es_firmware 1.000
mitsubishielectric fx3g-40mr/ds_firmware *
mitsubishielectric got_simple_series_gs21_firmware *
mitsubishielectric conveyor_tracking_application_apr-ntr3fh *
mitsubishielectric q06ccpu-v_firmware *
mitsubishielectric fx3g-60mr/es_firmware *
mitsubishielectric fr-a8ncge_firmware *
mitsubishielectric fr-f862-e_firmware *
mitsubishielectric fx3g-24mr/es_firmware *
mitsubishielectric fx5uj-24mr/es_firmware 1.000
mitsubishielectric fx3g-32_mt/dss_firmware *
mitsubishielectric mr-je-c_firmware *
mitsubishielectric iu1-1m20-d_firmware *
mitsubishielectric rncpu(n=04/08/16/32/120)_firmware *
mitsubishielectric fx3g-24mt/dss_firmware *
mitsubishielectric le7-40gu-l_firmware *
mitsubishielectric fr-a840-e_firmware *
mitsubishielectric lncpu(-p)(n=02/06/26)_firmware *
mitsubishielectric fx3g-60mt/dss_firmware *
mitsubishielectric qnudpvcpu(n=04/06/13/2)_firmware *
mitsubishielectric fx5uc-32mt/d_firmware 1.210
mitsubishielectric fx5uc-32mt/dss-ts_firmware 1.210
mitsubishielectric fx3g-40mt/dss_firmware *
mitsubishielectric fx5-cclgn-ms_firmware *
mitsubishielectric got1000_series_gt14_firmware *
mitsubishielectric fr-e800-epa_firmware *
mitsubishielectric fr-e800-epb_firmware *
mitsubishielectric fx5-enet-adp_firmware *
mitsubishielectric fx3g-60mr/ds_firmware *
mitsubishielectric fr-a820-e_firmware *
CVE-2020-16850 HIGH

Mitsubishi MELSEC iQ-R Series PLCs with firmware 49 allow an unauthenticated attacker to halt the industrial process by sending a crafted packet over the network. This denial of service attack exposes Improper Input Validation. After halting, physical access to the PLC is required in order to restore production, and the device state is lost. This is related to R04CPU, RJ71GF11-T2, R04CPU, and RJ71GF11-T2.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric r120sfcpu_firmware *
mitsubishielectric r16pcpu_firmware *
mitsubishielectric r32sfcpu_firmware *
mitsubishielectric r08cpu_firmware *
mitsubishielectric r120pcpu_firmware *
mitsubishielectric r32pcpu_firmware *
mitsubishielectric r16mtcpu_firmware *
mitsubishielectric r16sfcpu_firmware *
mitsubishielectric r120cpu_firmware *
mitsubishielectric r16cpu_firmware *
mitsubishielectric r01cpu_firmware *
mitsubishielectric r04cpu_firmware *
mitsubishielectric r08pcpu_firmware *
mitsubishielectric r32cpu_firmware *
mitsubishielectric r08sfcpu_firmware *
mitsubishielectric r00cpu_firmware *
mitsubishielectric r64mtcpu_firmware *
mitsubishielectric r02cpu_firmware *
mitsubishielectric r32mtcpu_firmware *
CVE-2020-5527 MEDIUM

When MELSOFT transmission port (UDP/IP) of Mitsubishi Electric MELSEC iQ-R series (all versions), MELSEC iQ-F series (all versions), MELSEC Q series (all versions), MELSEC L series (all versions), and MELSEC F series (all versions) receives massive amount of data via unspecified vectors, resource consumption occurs and the port does not process the data properly. As a result, it may fall into a denial-of-service (DoS) condition. The vendor states this vulnerability only affects Ethernet communication functions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric r16encpu_firmware -
mitsubishielectric fx5uj_firmware -
mitsubishielectric fx5u_firmware -
mitsubishielectric l02scpu-p_firmware -
mitsubishielectric r04encpu_firmware -
mitsubishielectric fx5uc_firmware -
mitsubishielectric q172dscpu_firmware -
mitsubishielectric q24dhccpu-ls_firmware -
mitsubishielectric cr800-q_firmware -
mitsubishielectric q12phcpu_firmware -
mitsubishielectric q173nccpu_firmware -
mitsubishielectric fx3g_firmware -
mitsubishielectric r08encpu_firmware -
mitsubishielectric q24dhccpu-v_firmware -
mitsubishielectric r32cpu_firmware -
mitsubishielectric q173dscpu_firmware -
mitsubishielectric q25phcpu_firmware -
mitsubishielectric fx3s_firmware -
mitsubishielectric l26cpu-pbt_firmware -
mitsubishielectric r32encpu_firmware -
mitsubishielectric fx3gc_firmware -
mitsubishielectric q25prhcpu_firmware -
mitsubishielectric fx3u_firmware -
mitsubishielectric r08cpu_firmware -
mitsubishielectric l06cpu-p_firmware -
mitsubishielectric l26cpu-bt_firmware -
mitsubishielectric fx3uc_firmware -
mitsubishielectric q12dccpu-v_firmware -
mitsubishielectric r16cpu_firmware -
mitsubishielectric r120cpu_firmware -
mitsubishielectric q02phcpu_firmware -
mitsubishielectric r00cpu_firmware -
mitsubishielectric r120encpu_firmware -
mitsubishielectric l06cpu_firmware -
mitsubishielectric q24dhccpu-vg2_firmware -
mitsubishielectric r02cpu_firmware -
mitsubishielectric r04cpu_firmware -
mitsubishielectric l02cpu_firmware -
mitsubishielectric q12prhcpu_firmware -
mitsubishielectric r01cpu_firmware -
mitsubishielectric l02cpu-p_firmware -
mitsubishielectric l26cpu_firmware -
mitsubishielectric l02scpu_firmware -
mitsubishielectric q26dhccpu-ls_firmware -
mitsubishielectric l26cpu-p_firmware -
mitsubishielectric q06phcpu_firmware -
CVE-2020-5531 HIGH

Mitsubishi Electric MELSEC C Controller Module and MELIPC Series MI5000 MELSEC-Q Series C Controller Module(Q24DHCCPU-V, Q24DHCCPU-VG User Ethernet port (CH1, CH2): First 5 digits of serial number 21121 or before), MELSEC iQ-R Series C Controller Module / C Intelligent Function Module(R12CCPU-V Ethernet port (CH1, CH2): First 2 digits of serial number 11 or before, and RD55UP06-V Ethernet port: First 2 digits of serial number 08 or before), and MELIPC Series MI5000(MI5122-VW Ethernet port (CH1): First 2 digits of serial number 03 or before, or the firmware version 03 or before) allow remote attackers to cause a denial of service and/or malware being executed via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mitsubishielectric rd55up06-v_firmware *
mitsubishielectric q24dhccpu-vg_firmware *
mitsubishielectric r12ccpu-v_firmware *
mitsubishielectric mi5122-vw_firmware *
mitsubishielectric q24dhccpu-v_firmware *
CVE-2020-5542 HIGH

Buffer error vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
mitsubishielectric iu1-1m20-d_firmware *
CVE-2020-5543 HIGH

TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier does not properly manage sessions, which allows remote attackers to stop the network functions or execute malware via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-384,

Products Affected

Vendor Product Version
mitsubishielectric iu1-1m20-d_firmware *
CVE-2020-5544 HIGH

Null Pointer Dereference vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-476,

Products Affected

Vendor Product Version
mitsubishielectric iu1-1m20-d_firmware *
CVE-2020-5545 HIGH

TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to bypass access restriction and to stop the network functions or execute malware via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mitsubishielectric iu1-1m20-d_firmware *
CVE-2020-5546 MEDIUM

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows an attacker on the same network segment to stop the network functions or execute malware via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-88,

Products Affected

Vendor Product Version
mitsubishielectric iu1-1m20-d_firmware *
CVE-2020-5547 HIGH

Resource Management Errors vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mitsubishielectric iu1-1m20-d_firmware *
CVE-2020-5594 HIGH

Mitsubishi Electric MELSEC iQ-R, iQ-F, Q, L, and FX series CPU modules all versions contain a vulnerability that allows cleartext transmission of sensitive information between CPU modules and GX Works3 and/or GX Works2 via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-319,

Products Affected

Vendor Product Version
mitsubishielectric melsec-l_firmware *
mitsubishielectric melsec-q_firmware *
mitsubishielectric melsec_iq-r_firmware *
mitsubishielectric melsec_iq-f_firmware *
mitsubishielectric melsec-fx_firmware *
CVE-2020-5595 HIGH

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains a buffer overflow vulnerability, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5596 MEDIUM

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) does not properly manage sessions, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5597 MEDIUM

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains a null pointer dereference vulnerability, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5598 MEDIUM

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains an improper access control vulnerability, which may which may allow a remote attacker tobypass access restriction and stop the network functions of the products or execute a malicious program via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5599 HIGH

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains an improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-88,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5600 MEDIUM

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains a resource management error vulnerability, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5602 MEDIUM

Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier, EM Software Development Kit (EM Configurator) Ver. 1.010L and earlier, GT Designer3 (GOT2000) Ver. 1.221F and earlier, GX LogViewer Ver. 1.96A and earlier, GX Works2 Ver. 1.586L and earlier, GX Works3 Ver. 1.058L and earlier, M_CommDTM-HART Ver. 1.00A, M_CommDTM-IO-Link Ver. 1.02C and earlier, MELFA-Works Ver. 4.3 and earlier, MELSEC-L Flexible High-Speed I/O Control Module Configuration Tool Ver.1.004E and earlier, MELSOFT FieldDeviceConfigurator Ver. 1.03D and earlier, MELSOFT iQ AppPortal Ver. 1.11M and earlier, MELSOFT Navigator Ver. 2.58L and earlier, MI Configurator Ver. 1.003D and earlier, Motion Control Setting Ver. 1.005F and earlier, MR Configurator2 Ver. 1.72A and earlier, MT Works2 Ver. 1.156N and earlier, RT ToolBox2 Ver. 3.72A and earlier, and RT ToolBox3 Ver. 1.50C and earlier) allows an attacker to conduct XML External Entity (XXE) attacks via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-611,

Products Affected

Vendor Product Version
mitsubishielectric gx_works2 *
mitsubishielectric m_commdtm-hart *
mitsubishielectric cw_configurator *
mitsubishielectric mr_configurator2 *
mitsubishielectric rt_toolbox3 *
mitsubishielectric em_configurator *
mitsubishielectric gt_designer3 *
mitsubishielectric melsec-l_flexible_high-speed_i/o_control_module_configuration_tool *
mitsubishielectric mt_works2 *
mitsubishielectric motion_control_setting *
mitsubishielectric melsoft_iq_appportal *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric melsoft_fielddeviceconfigurator *
mitsubishielectric m_commdtm-io-link *
mitsubishielectric melfa-works *
mitsubishielectric mi_configurator *
mitsubishielectric rt_toolbox2 *
mitsubishielectric gx_works3 *
mitsubishielectric melsoft_navigator *
mitsubishielectric gx_logviewer *
CVE-2020-5603 MEDIUM

Uncontrolled resource consumption vulnerability in Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier, EM Software Development Kit (EM Configurator) Ver. 1.010L and earlier, GT Designer3 (GOT2000) Ver. 1.221F and earlier, GX LogViewer Ver. 1.96A and earlier, GX Works2 Ver. 1.586L and earlier, GX Works3 Ver. 1.058L and earlier, M_CommDTM-HART Ver. 1.00A, M_CommDTM-IO-Link Ver. 1.02C and earlier, MELFA-Works Ver. 4.3 and earlier, MELSEC-L Flexible High-Speed I/O Control Module Configuration Tool Ver.1.004E and earlier, MELSOFT FieldDeviceConfigurator Ver. 1.03D and earlier, MELSOFT iQ AppPortal Ver. 1.11M and earlier, MELSOFT Navigator Ver. 2.58L and earlier, MI Configurator Ver. 1.003D and earlier, Motion Control Setting Ver. 1.005F and earlier, MR Configurator2 Ver. 1.72A and earlier, MT Works2 Ver. 1.156N and earlier, RT ToolBox2 Ver. 3.72A and earlier, and RT ToolBox3 Ver. 1.50C and earlier) allows an attacker to cause a denial of service (DoS) condition attacks via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric gx_works2 *
mitsubishielectric m_commdtm-hart *
mitsubishielectric cw_configurator *
mitsubishielectric mr_configurator2 *
mitsubishielectric rt_toolbox3 *
mitsubishielectric em_configurator *
mitsubishielectric gt_designer3 *
mitsubishielectric melsec-l_flexible_high-speed_i/o_control_module_configuration_tool *
mitsubishielectric mt_works2 *
mitsubishielectric motion_control_setting *
mitsubishielectric melsoft_iq_appportal *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric melsoft_fielddeviceconfigurator *
mitsubishielectric m_commdtm-io-link *
mitsubishielectric melfa-works *
mitsubishielectric mi_configurator *
mitsubishielectric rt_toolbox2 *
mitsubishielectric gx_works3 *
mitsubishielectric melsoft_navigator *
mitsubishielectric gx_logviewer *
CVE-2020-5644 HIGH

Buffer overflow vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5645 MEDIUM

Session fixation vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5646 MEDIUM

NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5647 HIGH

Improper access control vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QMBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QLBDE CoreOS version ’05.65.00.BD’ and earlier, GT1455HS-QTBDE CoreOS version ’05.65.00.BD’ and earlier, and GT1450HS-QMBDE CoreOS version ’05.65.00.BD’ and earlier) allows a remote unauthenticated attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5648 MEDIUM

Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows unauthenticated attackers on adjacent network to stop the network functions of the products via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-88,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5649 MEDIUM

Resource management error vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mitsubishielectric coreos *
CVE-2020-5652 MEDIUM

Uncontrolled resource consumption vulnerability in Ethernet Port on MELSEC iQ-R, Q and L series CPU modules (R 00/01/02 CPU firmware versions '20' and earlier, R 04/08/16/32/120 (EN) CPU firmware versions '52' and earlier, R 08/16/32/120 SFCPU firmware versions '22' and earlier, R 08/16/32/120 PCPU all versions, R 08/16/32/120 PSFCPU all versions, R 16/32/64 MTCPU all versions, Q03 UDECPU, Q 04/06/10/13/20/26/50/100 UDEHCPU serial number '22081' and earlier , Q 03/04/06/13/26 UDVCPU serial number '22031' and earlier, Q 04/06/13/26 UDPVCPU serial number '22031' and earlier, Q 172/173 DCPU all versions, Q 172/173 DSCPU all versions, Q 170 MCPU all versions, Q 170 MSCPU all versions, L 02/06/26 CPU (-P) and L 26 CPU - (P) BT all versions) allows a remote unauthenticated attacker to stop the Ethernet communication functions of the products via a specially crafted packet, which may lead to a denial of service (DoS) condition .

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric melsec_q-q26udvcpu_firmware 22031
mitsubishielectric melsec_q-q03udecpu_firmware 22081
mitsubishielectric melsec_iq-r08pcpu_firmware -
mitsubishielectric melsec_iq-r08sfcpu_firmware 22
mitsubishielectric melsec_iq-r32pcpu_firmware -
mitsubishielectric melsec_q-q100udehcpu_firmware 22081
mitsubishielectric melsec_iq-r02cpu_firmware 20
mitsubishielectric melsec_iq-r32psfcpu_firmware -
mitsubishielectric melsec_iq-r64mtcpu_firmware -
mitsubishielectric melsec_l26cpu-pbt_firmware -
mitsubishielectric melsec_q-q04udpvcpu_firmware 22031
mitsubishielectric melsec_q-q06udehcpu_firmware 22081
mitsubishielectric melsec_iq-r120sfcpu_firmware 22
mitsubishielectric melsec_q-q06udpvcpu_firmware 22031
mitsubishielectric melsec_q-q172dcpu-s1_firmware -
mitsubishielectric melsec_iq-r120pcpu_firmware -
mitsubishielectric melsec_q-q170mscpu-s1_firmware -
mitsubishielectric melsec_l06cpu-p_firmware -
mitsubishielectric melsec_iq-r00cpu_firmware 20
mitsubishielectric melsec_q-q170mcpu_firmware -
mitsubishielectric melsec_q-q172dscpu_firmware -
mitsubishielectric melsec_iq-r16mtcpu_firmware -
mitsubishielectric melsec_iq-r16pcpu_firmware -
mitsubishielectric melsec_q-q20udehcpu_firmware 22081
mitsubishielectric melsec_iq-r16sfcpu_firmware 22
mitsubishielectric melsec_q-q26udehcpu_firmware 22081
mitsubishielectric melsec_iq-r32encpu_firmware 52
mitsubishielectric melsec_l02cpu-p_firmware -
mitsubishielectric melsec_q-q26udpvcpu_firmware 22031
mitsubishielectric melsec_iq-r120encpu_firmware 52
mitsubishielectric melsec_q-q10udehcpu_firmware 22081
mitsubishielectric melsec_q-q173dscpu_firmware -
mitsubishielectric melsec_q-q173dcpu-s1_firmware -
mitsubishielectric melsec_q-q13udehcpu_firmware 22081
mitsubishielectric melsec_q-q50udehcpu_firmware 22081
mitsubishielectric melsec_iq-r01cpu_firmware 20
mitsubishielectric melsec_q-q13udpvcpu_firmware 22031
mitsubishielectric melsec_q-q04udehcpu_firmware 22081
mitsubishielectric melsec_iq-r04encpu_firmware 52
mitsubishielectric melsec_iq-r08psfcpu_firmware -
mitsubishielectric melsec_q-qmr-mq100_firmware -
mitsubishielectric melsec_iq-r08encpu_firmware 52
mitsubishielectric melsec_iq-r32mtcpu_firmware -
mitsubishielectric melsec_q-q03udvcpu_firmware 22031
mitsubishielectric melsec_q-q13udvcpu_firmware 22031
mitsubishielectric melsec_iq-r16encpu_firmware 52
mitsubishielectric melsec_iq-r32sfcpu_firmware 22
mitsubishielectric melsec_iq-r16psfcpu_firmware -
mitsubishielectric melsec_iq-r120psfcpu_firmware -
mitsubishielectric melsec_l26cpu-p_firmware -
mitsubishielectric melsec_q-q04udvcpu_firmware 22031
CVE-2020-5653 HIGH

Buffer overflow vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series (RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before, RD81DL96 High Speed Data Logger Module First 2 digits of serial number are '08' or before, RD81MES96N MES Interface Module First 2 digits of serial number are '04' or before, and RD81OPC96 OPC UA Server Module First 2 digits of serial number are '04' or before) allows a remote unauthenticated attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-rj71eip91_firmware -
mitsubishielectric melsec_iq-rj71pn92_firmware -
mitsubishielectric melsec_iq-rd81dl96_firmware -
mitsubishielectric melsec_iq-rd81opc96_firmware -
mitsubishielectric melsec_iq-rd81mes96n_firmware -
CVE-2020-5654 MEDIUM

Session fixation vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series (RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before, RD81DL96 High Speed Data Logger Module First 2 digits of serial number are '08' or before, RD81MES96N MES Interface Module First 2 digits of serial number are '04' or before, and RD81OPC96 OPC UA Server Module First 2 digits of serial number are '04' or before) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-rj71eip91_firmware -
mitsubishielectric melsec_iq-rj71pn92_firmware -
mitsubishielectric melsec_iq-rd81dl96_firmware -
mitsubishielectric melsec_iq-rd81opc96_firmware -
mitsubishielectric melsec_iq-rd81mes96n_firmware -
CVE-2020-5655 MEDIUM

NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series (RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before, RD81DL96 High Speed Data Logger Module First 2 digits of serial number are '08' or before, RD81MES96N MES Interface Module First 2 digits of serial number are '04' or before, and RD81OPC96 OPC UA Server Module First 2 digits of serial number are '04' or before) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-rj71eip91_firmware -
mitsubishielectric melsec_iq-rj71pn92_firmware -
mitsubishielectric melsec_iq-rd81dl96_firmware -
mitsubishielectric melsec_iq-rd81opc96_firmware -
mitsubishielectric melsec_iq-rd81mes96n_firmware -
CVE-2020-5656 HIGH

Improper access control vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series (RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before, RD81DL96 High Speed Data Logger Module First 2 digits of serial number are '08' or before, RD81MES96N MES Interface Module First 2 digits of serial number are '04' or before, and RD81OPC96 OPC UA Server Module First 2 digits of serial number are '04' or before) allows a remote unauthenticated attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-rj71eip91_firmware -
mitsubishielectric melsec_iq-rj71pn92_firmware -
mitsubishielectric melsec_iq-rd81dl96_firmware -
mitsubishielectric melsec_iq-rd81opc96_firmware -
mitsubishielectric melsec_iq-rd81mes96n_firmware -
CVE-2020-5657 LOW

Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series (RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before, RD81DL96 High Speed Data Logger Module First 2 digits of serial number are '08' or before, RD81MES96N MES Interface Module First 2 digits of serial number are '04' or before, and RD81OPC96 OPC UA Server Module First 2 digits of serial number are '04' or before) allows unauthenticated attackers on adjacent network to stop the network functions of the products via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-88,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-rj71eip91_firmware -
mitsubishielectric melsec_iq-rj71pn92_firmware -
mitsubishielectric melsec_iq-rd81dl96_firmware -
mitsubishielectric melsec_iq-rd81opc96_firmware -
mitsubishielectric melsec_iq-rd81mes96n_firmware -
CVE-2020-5658 MEDIUM

Resource Management Errors vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series (RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before, RD81DL96 High Speed Data Logger Module First 2 digits of serial number are '08' or before, RD81MES96N MES Interface Module First 2 digits of serial number are '04' or before, and RD81OPC96 OPC UA Server Module First 2 digits of serial number are '04' or before) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-rj71eip91_firmware -
mitsubishielectric melsec_iq-rj71pn92_firmware -
mitsubishielectric melsec_iq-rd81dl96_firmware -
mitsubishielectric melsec_iq-rd81opc96_firmware -
mitsubishielectric melsec_iq-rd81mes96n_firmware -
CVE-2020-5665 LOW

Improper check or handling of exceptional conditions in MELSEC iQ-F series FX5U(C) CPU unit firmware version 1.060 and earlier allows an attacker to cause a denial-of-service (DoS) condition on program execution and communication by sending a specially crafted ARP packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.4 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H 2.8 4.0

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-f_fx5u_cpu_firmware *
CVE-2020-5666 HIGH

Uncontrolled resource consumption vulnerability in MELSEC iQ-R Series CPU Modules (R00/01/02CPU Firmware versions from '05' to '19' and R04/08/16/32/120(EN)CPU Firmware versions from '35' to '51') allows a remote attacker to cause an error in a CPU unit via a specially crafted HTTP packet, which may lead to a denial-of-service (DoS) condition in execution of the program and its communication.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-r120_firmware *
mitsubishielectric melsec_iq-r04_firmware *
mitsubishielectric melsec_iq-r32_firmware *
mitsubishielectric melsec_iq-r01_firmware *
mitsubishielectric melsec_iq-r02_firmware *
mitsubishielectric melsec_iq-r00_firmware *
mitsubishielectric melsec_iq-r08_firmware *
mitsubishielectric melsec_iq-r16_firmware *
CVE-2020-5668 HIGH

Uncontrolled resource consumption vulnerability in MELSEC iQ-R Series modules (R00/01/02CPU firmware version '19' and earlier, R04/08/16/32/120 (EN) CPU firmware version '51' and earlier, R08/16/32/120SFCPU firmware version '22' and earlier, R08/16/32/120PCPU firmware version '25' and earlier, R08/16/32/120PSFCPU firmware version '06' and earlier, RJ71EN71 firmware version '47' and earlier, RJ71GF11-T2 firmware version '47' and earlier, RJ72GF15-T2 firmware version '07' and earlier, RJ71GP21-SX firmware version '47' and earlier, RJ71GP21S-SX firmware version '47' and earlier, and RJ71GN11-T2 firmware version '11' and earlier) allows a remote unauthenticated attacker to cause an error in a CPU unit and cause a denial-of-service (DoS) condition in execution of the program and its communication, or to cause a denial-of-service (DoS) condition in communication via the unit by receiving a specially crafted SLMP packet

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric r120sfcpu_firmware *
mitsubishielectric rj71gn11-t2_firmware *
mitsubishielectric rj71c24-r2_firmware *
mitsubishielectric rj72gf15-t2_firmware *
mitsubishielectric r120pcpu_firmware *
mitsubishielectric r32psfcpu_firmware *
mitsubishielectric r04cpu_firmware *
mitsubishielectric r08pcpu_firmware *
mitsubishielectric r00cpu_firmware *
mitsubishielectric rj71gp21s-sx_firmware *
mitsubishielectric rj71c24-r4_firmware *
mitsubishielectric r16psfcpu_firmware *
mitsubishielectric r16pcpu_firmware *
mitsubishielectric r32sfcpu_firmware *
mitsubishielectric r120psfcpu_firmware *
mitsubishielectric rj71gp21-sx_firmware *
mitsubishielectric r08cpu_firmware *
mitsubishielectric r32pcpu_firmware *
mitsubishielectric r16sfcpu_firmware *
mitsubishielectric r120cpu_firmware *
mitsubishielectric r16cpu_firmware *
mitsubishielectric r01cpu_firmware *
mitsubishielectric r08psfcpu_firmware *
mitsubishielectric rj71en71_firmware *
mitsubishielectric r32cpu_firmware *
mitsubishielectric r08sfcpu_firmware *
mitsubishielectric rj71gf11-t2_firmware *
mitsubishielectric r02cpu_firmware *
CVE-2020-5675 MEDIUM

Out-of-bounds read vulnerability in GT21 model of GOT2000 series (GT2107-WTBD V01.39.000 and earlier, GT2107-WTSD V01.39.000 and earlier, GT2104-RTBD V01.39.000 and earlier, GT2104-PMBD V01.39.000 and earlier, and GT2103-PMBD V01.39.000 and earlier), GS21 model of GOT series (GS2110-WTBD V01.39.000 and earlier, GS2107-WTBD V01.39.000 and earlier, GS2110-WTBD-N V01.39.000 and earlier, and GS2107-WTBD-N V01.39.000 and earlier), and Tension Controller LE7-40GU-L series (LE7-40GU-L Screen package data for CC-Link IEF Basic V1.00, LE7-40GU-L Screen package data for MODBUS/TCP V1.00, and LE7-40GU-L Screen package data for SLMP V1.00) allows a remote attacker to cause a denial-of-service (DoS) condition by sending a specially crafted packet. As a result, deterioration of communication performance or a denial-of-service (DoS) condition of the TCP communication functions of the products may occur.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
mitsubishielectric gt2107-wtbd_firmware *
mitsubishielectric gt2107-wtsd_firmware *
mitsubishielectric gt2104-rtbd_firmware *
mitsubishielectric gs2107-wtbd-n_firmware *
mitsubishielectric gs2110-wtbd_firmware *
mitsubishielectric gt2103-pmbd_firmware *
mitsubishielectric gs2107-wtbd_firmware *
mitsubishielectric gs2110-wtbd-n_firmware *
mitsubishielectric gt2104-pmbd_firmware *
mitsubishielectric le7-40gu-l_firmware 1.00
CVE-2021-20586 HIGH

Resource management errors vulnerability in a robot controller of MELFA FR Series(controller "CR800-*V*D" of RV-*FR***-D-* all versions, controller "CR800-*HD" of RH-*FRH***-D-* all versions, controller "CR800-*HRD" of RH-*FRHR***-D-* all versions, controller "CR800-*V*R with R16RTCPU" of RV-*FR***-R-* all versions, controller "CR800-*HR with R16RTCPU" of RH-*FRH***-R-* all versions, controller "CR800-*HRR with R16RTCPU" of RH-*FRHR***-R-* all versions, controller "CR800-*V*Q with Q172DSRCPU" of RV-*FR***-Q-* all versions, controller "CR800-*HQ with Q172DSRCPU" of RH-*FRH***-Q-* all versions, controller "CR800-*HRQ with Q172DSRCPU" of RH-*FRHR***-Q-* all versions) and a robot controller of MELFA CR Series(controller "CR800-CVD" of RV-8CRL-D-* all versions, controller "CR800-CHD" of RH-*CRH**-D-* all versions) as well as a cooperative robot ASSISTA(controller "CR800-05VD" of RV-5AS-D-* all versions) allows a remote unauthenticated attacker to cause a DoS of the execution of the robot program and the Ethernet communication by sending a large amount of packets in burst over a short period of time. As a result of DoS, an error may occur. A reset is required to recover it if the error occurs.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mitsubishielectric rh12frh85_firmware *
mitsubishielectric rv2frl_firmware *
mitsubishielectric rv4frl_firmware *
mitsubishielectric rh3frh35_firmware *
mitsubishielectric rv2frl(b)_firmware *
mitsubishielectric rv7frllm/c_firmware *
mitsubishielectric rv2fr_firmware *
mitsubishielectric rv7fr_firmware *
mitsubishielectric rv20fr_firmware *
mitsubishielectric rh3frh45_firmware *
mitsubishielectric rv2fr(b)_firmware *
mitsubishielectric rh20frh85_firmware *
mitsubishielectric rh3frhr_firmware *
mitsubishielectric rv4frlm/c_firmware *
mitsubishielectric rv13frm/c_firmware *
mitsubishielectric rv7frll_firmware *
mitsubishielectric rh6frh55_firmware *
mitsubishielectric rv4frm/c_firmware *
mitsubishielectric rv13frl_firmware *
mitsubishielectric rh6frh35_firmware *
mitsubishielectric rv7frl_firmware *
mitsubishielectric rv7frm/c_firmware *
mitsubishielectric rh12frh55_firmware *
mitsubishielectric rh1frhr_firmware *
mitsubishielectric rv7frlm/c_firmware *
mitsubishielectric rv4fr_firmware *
mitsubishielectric rv13fr_firmware *
mitsubishielectric rv20frm/c_firmware *
mitsubishielectric rh3frh55_firmware *
mitsubishielectric rv13frlm/c_firmware *
mitsubishielectric rh12rfh70_firmware *
mitsubishielectric rh20frh100_firmware *
mitsubishielectric rh6frh45_firmware *
CVE-2021-20587 HIGH

Heap-based buffer overflow vulnerability in Mitsubishi Electric FA Engineering Software (CPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versions 1.011M and prior, Data Transfer versions 3.44W and prior, EZSocket versions 5.4 and prior, FR Configurator all versions, FR Configurator SW3 all versions, FR Configurator2 versions 1.24A and prior, GT Designer3 Version1(GOT1000) versions 1.250L and prior, GT Designer3 Version1(GOT2000) versions 1.250L and prior, GT SoftGOT1000 Version3 versions 3.245F and prior, GT SoftGOT2000 Version1 versions 1.250L and prior, GX Configurator-DP versions 7.14Q and prior, GX Configurator-QP all versions, GX Developer versions 8.506C and prior, GX Explorer all versions, GX IEC Developer all versions, GX LogViewer versions 1.115U and prior, GX RemoteService-I all versions, GX Works2 versions 1.597X and prior, GX Works3 versions 1.070Y and prior, iQ Monozukuri ANDON (Data Transfer) versions 1.003D and prior, iQ Monozukuri Process Remote Monitoring (Data Transfer) versions 1.002C and prior, M_CommDTM-HART all versions, M_CommDTM-IO-Link versions 1.03D and prior, MELFA-Works versions 4.4 and prior, MELSEC WinCPU Setting Utility all versions, MELSOFT EM Software Development Kit (EM Configurator) versions 1.015R and prior, MELSOFT Navigator versions 2.74C and prior, MH11 SettingTool Version2 versions 2.004E and prior, MI Configurator versions 1.004E and prior, MT Works2 versions 1.167Z and prior, MX Component versions 5.001B and prior, Network Interface Board CC IE Control utility versions 1.29F and prior, Network Interface Board CC IE Field Utility versions 1.16S and prior, Network Interface Board CC-Link Ver.2 Utility versions 1.23Z and prior, Network Interface Board MNETH utility versions 34L and prior, PX Developer versions 1.53F and prior, RT ToolBox2 versions 3.73B and prior, RT ToolBox3 versions 1.82L and prior, Setting/monitoring tools for the C Controller module (SW4PVC-CCPU) versions 4.12N and prior, and SLMP Data Collector versions 1.04E and prior) allows a remote unauthenticated attacker to cause a DoS condition on the software products, and possibly to execute a malicious code on the personal computer running the software products although it has not been reproduced, by spoofing MELSEC, GOT or FREQROL and returning crafted reply packets.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-122,CWE-787,

Products Affected

Vendor Product Version
mitsubishielectric m_commdtm-hart *
mitsubishielectric slmp_data_collector *
mitsubishielectric cw_configurator *
mitsubishielectric gx_iec_developer *
mitsubishielectric mx_component *
mitsubishielectric setting/monitoring_tools_for_the_c_controller_module *
mitsubishielectric rt_toolbox3 *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric melsoft_em_software_development_kit *
mitsubishielectric melsec_wincpu_setting_utility *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_explorer *
mitsubishielectric gx_configurator-dp *
mitsubishielectric gx_developer *
mitsubishielectric iq_monozukuri_process_remote_monitoring -
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric c_controller_module_setting_and_monitoring_tool *
mitsubishielectric gx_configurator-qp *
mitsubishielectric gx_remoteservice-i *
mitsubishielectric px_developer *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric network_interface_board_cc_ie_control_utility *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mh11_settingtool_version2 *
mitsubishielectric fr_configurator *
mitsubishielectric ezsocket *
mitsubishielectric gt_designer3 *
mitsubishielectric network_interface_board_mneth_utility *
mitsubishielectric network_interface_board_cc_ie_field_utility *
mitsubishielectric mt_works2 *
mitsubishielectric iq_monozukuri_andon -
mitsubishielectric network_interface_board_cc-link *
mitsubishielectric m_commdtm-io-link *
mitsubishielectric melfa-works *
mitsubishielectric mi_configurator *
mitsubishielectric rt_toolbox2 *
mitsubishielectric melsoft_navigator *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2021-20588 HIGH

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric FA Engineering Software (CPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versions 1.011M and prior, Data Transfer versions 3.44W and prior, EZSocket versions 5.4 and prior, FR Configurator all versions, FR Configurator SW3 all versions, FR Configurator2 versions 1.24A and prior, GT Designer3 Version1(GOT1000) versions 1.250L and prior, GT Designer3 Version1(GOT2000) versions 1.250L and prior, GT SoftGOT1000 Version3 versions 3.245F and prior, GT SoftGOT2000 Version1 versions 1.250L and prior, GX Configurator-DP versions 7.14Q and prior, GX Configurator-QP all versions, GX Developer versions 8.506C and prior, GX Explorer all versions, GX IEC Developer all versions, GX LogViewer versions 1.115U and prior, GX RemoteService-I all versions, GX Works2 versions 1.597X and prior, GX Works3 versions 1.070Y and prior, iQ Monozukuri ANDON (Data Transfer) versions 1.003D and prior, iQ Monozukuri Process Remote Monitoring (Data Transfer) versions 1.002C and prior, M_CommDTM-HART all versions, M_CommDTM-IO-Link versions 1.03D and prior, MELFA-Works versions 4.4 and prior, MELSEC WinCPU Setting Utility all versions, MELSOFT EM Software Development Kit (EM Configurator) versions 1.015R and prior, MELSOFT Navigator versions 2.74C and prior, MH11 SettingTool Version2 versions 2.004E and prior, MI Configurator versions 1.004E and prior, MT Works2 versions 1.167Z and prior, MX Component versions 5.001B and prior, Network Interface Board CC IE Control utility versions 1.29F and prior, Network Interface Board CC IE Field Utility versions 1.16S and prior, Network Interface Board CC-Link Ver.2 Utility versions 1.23Z and prior, Network Interface Board MNETH utility versions 34L and prior, PX Developer versions 1.53F and prior, RT ToolBox2 versions 3.73B and prior, RT ToolBox3 versions 1.82L and prior, Setting/monitoring tools for the C Controller module (SW4PVC-CCPU) versions 4.12N and prior, and SLMP Data Collector versions 1.04E and prior) allows a remote unauthenticated attacker to cause a DoS condition on the software products, and possibly to execute a malicious code on the personal computer running the software products although it has not been reproduced, by spoofing MELSEC, GOT or FREQROL and returning crafted reply packets.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-130,CWE-119,

Products Affected

Vendor Product Version
mitsubishielectric m_commdtm-hart *
mitsubishielectric slmp_data_collector *
mitsubishielectric cw_configurator *
mitsubishielectric gx_iec_developer *
mitsubishielectric mx_component *
mitsubishielectric setting/monitoring_tools_for_the_c_controller_module *
mitsubishielectric rt_toolbox3 *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric melsoft_em_software_development_kit *
mitsubishielectric melsec_wincpu_setting_utility *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_explorer *
mitsubishielectric gx_configurator-dp *
mitsubishielectric gx_developer *
mitsubishielectric iq_monozukuri_process_remote_monitoring -
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric c_controller_module_setting_and_monitoring_tool *
mitsubishielectric gx_configurator-qp *
mitsubishielectric gx_remoteservice-i *
mitsubishielectric px_developer *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric network_interface_board_cc_ie_control_utility *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mh11_settingtool_version2 *
mitsubishielectric fr_configurator *
mitsubishielectric ezsocket *
mitsubishielectric gt_designer3 *
mitsubishielectric network_interface_board_mneth_utility *
mitsubishielectric network_interface_board_cc_ie_field_utility *
mitsubishielectric mt_works2 *
mitsubishielectric iq_monozukuri_andon -
mitsubishielectric network_interface_board_cc-link *
mitsubishielectric m_commdtm-io-link *
mitsubishielectric melfa-works *
mitsubishielectric mi_configurator *
mitsubishielectric rt_toolbox2 *
mitsubishielectric melsoft_navigator *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2021-20590 MEDIUM

Improper authentication vulnerability in GOT2000 series GT27 model VNC server versions 01.39.010 and prior, GOT2000 series GT25 model VNC server versions 01.39.010 and prior, GOT2000 series GT21 model GT2107-WTBD VNC server versions 01.40.000 and prior, GOT2000 series GT21 model GT2107-WTSD VNC server versions 01.40.000 and prior, GOT SIMPLE series GS21 model GS2110-WTBD-N VNC server versions 01.40.000 and prior and GOT SIMPLE series GS21 model GS2107-WTBD-N VNC server versions 01.40.000 and prior allows a remote unauthenticated attacker to gain unauthorized access via specially crafted packets when the "VNC server" function is used.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mitsubishielectric gt2107-wtbd_firmware *
mitsubishielectric gt2107-wtsd_firmware *
mitsubishielectric gs2107-wtbd-n_firmware *
mitsubishielectric got2000_gt27_firmware *
mitsubishielectric got2000_gt25_firmware *
mitsubishielectric gs2110-wtbd-n_firmware *
CVE-2021-20591 HIGH

Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R00/01/02CPU all versions, R04/08/16/32/120(EN)CPU all versions, R08/16/32/120SFCPU all versions, R08/16/32/120PCPU all versions, R08/16/32/120PSFCPU all versions) allows a remote unauthenticated attacker to prevent legitimate clients from connecting to the MELSOFT transmission port (TCP/IP) by not closing a connection properly, which may lead to a denial of service (DoS) condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric r120sfcpu_firmware *
mitsubishielectric r16psfcpu_firmware *
mitsubishielectric r16pcpu_firmware *
mitsubishielectric r32sfcpu_firmware *
mitsubishielectric r120psfcpu_firmware *
mitsubishielectric r08cpu_firmware *
mitsubishielectric r120pcpu_firmware *
mitsubishielectric r32pcpu_firmware *
mitsubishielectric r16sfcpu_firmware *
mitsubishielectric r32psfcpu_firmware *
mitsubishielectric r120cpu_firmware *
mitsubishielectric r16cpu_firmware *
mitsubishielectric r01cpu_firmware *
mitsubishielectric r08psfcpu_firmware *
mitsubishielectric r04cpu_firmware *
mitsubishielectric r08pcpu_firmware *
mitsubishielectric r32cpu_firmware *
mitsubishielectric r08sfcpu_firmware *
mitsubishielectric r00cpu_firmware *
mitsubishielectric r02cpu_firmware *
CVE-2021-20592 HIGH

Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions 01.19.000 through 01.39.010 and GT23 model communication driver versions 01.19.000 through 01.39.010 and GT SoftGOT2000 versions 1.170C through 1.256S allows a remote unauthenticated attacker to cause DoS condition on the MODBUS/TCP slave communication function of the products by rapidly and repeatedly connecting and disconnecting to and from the MODBUS/TCP communication port on a target. Restart or reset is required to recover.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-662,

Products Affected

Vendor Product Version
mitsubishielectric got2000_gt27_firmware *
mitsubishielectric got2000_gt25_firmware *
mitsubishielectric got2000_gt23_firmware *
mitsubishielectric gt_softgot2000 *
CVE-2021-20594 MEDIUM

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU firmware versions "11" and prior allows a remote unauthenticated attacker to acquire legitimate user names registered in the module via brute-force attack on user names.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mitsubishielectric r120sfcpu_firmware *
mitsubishielectric r08psfcpu_firmware *
mitsubishielectric r16psfcpu_firmware *
mitsubishielectric r32sfcpu_firmware *
mitsubishielectric r120psfcpu_firmware *
mitsubishielectric r08sfcpu_firmware *
mitsubishielectric r16sfcpu_firmware *
mitsubishielectric r32psfcpu_firmware *
CVE-2021-20596 MEDIUM

NULL Pointer Dereference in MELSEC-F Series FX3U-ENET firmware version 1.14 and prior, FX3U-ENET-L firmware version 1.14 and prior and FX3U-ENET-P502 firmware version 1.14 and prior allows a remote unauthenticated attacker to cause a DoS condition in communication by sending specially crafted packets. Control by MELSEC-F series PLC is not affected and system reset is required for recovery.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
mitsubishielectric fx3u-enet-l_firmware *
mitsubishielectric fx3u-enet-p502_firmware *
mitsubishielectric fx3u-enet_firmware *
CVE-2021-20597 MEDIUM

Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU firmware versions "11" and prior allows a remote unauthenticated attacker to login to the target unauthorizedly by sniffing network traffic and obtaining credentials when registering user information in the target or changing a password.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-522,

Products Affected

Vendor Product Version
mitsubishielectric r120sfcpu_firmware *
mitsubishielectric r08psfcpu_firmware *
mitsubishielectric r16psfcpu_firmware *
mitsubishielectric r32sfcpu_firmware *
mitsubishielectric r120psfcpu_firmware *
mitsubishielectric r08sfcpu_firmware *
mitsubishielectric r16sfcpu_firmware *
mitsubishielectric r32psfcpu_firmware *
CVE-2021-20598 MEDIUM

Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R08/16/32/120SFCPU all versions, R08/16/32/120PSFCPU all versions) allows a remote unauthenticated attacker to lockout a legitimate user by continuously trying login with incorrect password.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mitsubishielectric r120sfcpu_firmware *
mitsubishielectric r08psfcpu_firmware *
mitsubishielectric r16psfcpu_firmware *
mitsubishielectric r32sfcpu_firmware *
mitsubishielectric r120psfcpu_firmware *
mitsubishielectric r08sfcpu_firmware *
mitsubishielectric r16sfcpu_firmware *
mitsubishielectric r32psfcpu_firmware *
CVE-2021-20599 MEDIUM

Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and MELSEC iQ-R series SIL2 Process CPU R08/16/32/120PSFCPU firmware versions "11" and prior allows a remote unauthenticated attacker to login to a target CPU module by obtaining credentials other than password.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-319,CWE-639,

Products Affected

Vendor Product Version
mitsubishielectric r120sfcpu_firmware *
mitsubishielectric r08psfcpu_firmware *
mitsubishielectric r16psfcpu_firmware *
mitsubishielectric r32sfcpu_firmware *
mitsubishielectric r120psfcpu_firmware *
mitsubishielectric r08sfcpu_firmware *
mitsubishielectric r16sfcpu_firmware *
mitsubishielectric r32psfcpu_firmware *
CVE-2021-20600 HIGH

Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firmware Versions "16" and prior allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending a large number of packets in a short time while the module starting up. System reset is required for recovery.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mitsubishielectric r12ccpu-v_firmware *
CVE-2021-20601 HIGH

Improper input validation vulnerability in GOT2000 series GT27 model all versions, GOT2000 series GT25 model all versions, GOT2000 series GT23 model all versions, GOT2000 series GT21 model all versions, GOT SIMPLE series GS21 model all versions, and GT SoftGOT2000 all versions allows an remote unauthenticated attacker to write a value that exceeds the configured input range limit by sending a malicious packet to rewrite the device value. As a result, the system operation may be affected, such as malfunction.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mitsubishielectric got2000_gt2104-rtbd_firmware -
mitsubishielectric got2000_gt2512-wxtsd_firmware -
mitsubishielectric got2000_gt2708-vtbd_firmware -
mitsubishielectric got2000_gt2710-vtba_firmware -
mitsubishielectric got2000_gt2510-vtba_firmware -
mitsubishielectric got2000_gt2510-wxtbd_firmware -
mitsubishielectric got2000_gt2510-vtbd_firmware -
mitsubishielectric got2000_gt2506hs-vtbd_firmware -
mitsubishielectric got2000_gt2708-stbd_firmware -
mitsubishielectric got2000_gt2103-pmbd_firmware -
mitsubishielectric got2000_gt2505hs-vtbd_firmware -
mitsubishielectric got2000_gt2710-vtbd_firmware -
mitsubishielectric got2000_gt2103-pmbds_firmware -
mitsubishielectric got2000_gt2308-vtbd_firmware -
mitsubishielectric got2000_gt2712-stwd_firmware -
mitsubishielectric got2000_gt2712-stwa_firmware -
mitsubishielectric got2000_gt2310-vtbd_firmware -
mitsubishielectric got2000_gt2512-stba_firmware -
mitsubishielectric got2000_gt2705-vtbd_firmware -
mitsubishielectric got2000_gt2308-vtba_firmware -
mitsubishielectric got2000_gt2510-vtwa_firmware -
mitsubishielectric got2000_gt2708-stba_firmware -
mitsubishielectric got_simple_gs2110-wtbd_firmware -
mitsubishielectric got2000_gt2107-wtbd_firmware -
mitsubishielectric got2000_gt2103-pmbds2_firmware -
mitsubishielectric got2000_gt2507-wtbd_firmware -
mitsubishielectric got2000_gt2508-vtbd_firmware -
mitsubishielectric got2000_gt2712-stbd_firmware -
mitsubishielectric got2000_gt2710-vtwd_firmware -
mitsubishielectric got2000_gt2505-vtbd_firmware -
mitsubishielectric got2000_gt2507-wtsd_firmware -
mitsubishielectric got2000_gt2508-vtwd_firmware -
mitsubishielectric got2000_gt2507t-wtsd_firmware -
mitsubishielectric got2000_gt2510-wxtsd_firmware -
mitsubishielectric got2000_gt2510-vtwd_firmware -
mitsubishielectric got2000_gt2710-stba_firmware -
mitsubishielectric got2000_gt2708-vtba_firmware -
mitsubishielectric got2000_gt2512-wxtbd_firmware -
mitsubishielectric got2000_gt2103-pmbls_firmware -
mitsubishielectric got2000_gt2710-vtwa_firmware -
mitsubishielectric got2000_gt2508-vtba_firmware -
mitsubishielectric got2000_gt2310-vtba_firmware -
mitsubishielectric got2000_gt2710-stbd_firmware -
mitsubishielectric got_simple_gs2107-wtbd_firmware -
mitsubishielectric got2000_gt2712-stba_firmware -
mitsubishielectric got2000_gt2715-xtbd_firmware -
mitsubishielectric got2000_gt2508-vtwa_firmware -
mitsubishielectric gt_softgot2000 -
mitsubishielectric got2000_gt2512-stbd_firmware -
mitsubishielectric got2000_gt2715-xtba_firmware -
CVE-2021-20606 MEDIUM

Out-of-bounds Read vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition in the software by getting a user to open malicious project file specially crafted by an attacker.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
mitsubishielectric gx_works2 *
mitsubishielectric ezsocket *
mitsubishielectric melsoft_navigator *
CVE-2021-20607 MEDIUM

Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition in the software by getting a user to open malicious project file specially crafted by an attacker.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-191,

Products Affected

Vendor Product Version
mitsubishielectric gx_works2 *
mitsubishielectric ezsocket *
mitsubishielectric melsoft_navigator *
CVE-2021-20608 MEDIUM

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior allows a remote unauthenticated attacker to cause a DoS condition in GX Works2 by getting GX Works2 to read a tampered program file from a Mitsubishi Electric PLC by sending malicious crafted packets to tamper with the program file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mitsubishielectric gx_works2 *
CVE-2021-20612 HIGH

Lack of administrator control over security vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.14 and prior, FX3U-ENET-L Firmware version 1.14 and prior and FX3U-ENET-P502 Firmware version 1.14 and prior allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition in communication function of the product or other unspecified effects by sending specially crafted packets to an unnecessary opening of TCP port. Control by MELSEC-F series PLC is not affected by this vulnerability, but system reset is required for recovery.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mitsubishielectric fx3u-enet-l_firmware *
mitsubishielectric fx3u-enet-p502_firmware *
mitsubishielectric fx3u-enet_firmware *
CVE-2021-20613 HIGH

Improper initialization vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.16 and prior, FX3U-ENET-L Firmware version 1.16 and prior and FX3U-ENET-P502 Firmware version 1.16 and prior allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition in communication function of the product by sending specially crafted packets. Control by MELSEC-F series PLC is not affected by this vulnerability, but system reset is required for recovery.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-665,

Products Affected

Vendor Product Version
mitsubishielectric fx3u-enet-l_firmware *
mitsubishielectric fx3u-enet-p502_firmware *
mitsubishielectric fx3u-enet_firmware *
CVE-2021-27040 MEDIUM

A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnerability can be exploited to execute arbitrary code.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N 1.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
autodesk civil_3d *
autodesk dwg_trueview *
autodesk advance_steel *
autodesk autocad_lt *
autodesk autocad_architecture *
autodesk autocad_mep *
autodesk autocad *
mitsubishielectric mc_works64 *
autodesk autocad_electrical *
autodesk autocad_map_3d *
autodesk autocad_mechanical *
autodesk autocad_plant_3d *
iconics genesis64 *
CVE-2021-27041 MEDIUM

A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. This vulnerability can be exploited to execute arbitrary code

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
autodesk civil_3d *
autodesk advance_steel *
autodesk autocad_lt *
autodesk autocad_architecture *
autodesk autocad_mep *
autodesk autocad *
mitsubishielectric mc_works64 *
autodesk autocad_electrical *
autodesk autocad_map_3d *
autodesk autocad_mechanical *
autodesk autocad_plant_3d *
autodesk design_review 2018
iconics genesis64 *
CVE-2022-23127 MEDIUM

Cross-site Scripting vulnerability in Mitsubishi Electric MC Works64 versions 4.04E (10.95.210.01) and prior and ICONICS MobileHMI versions 10.96.2 and prior allows a remote unauthenticated attacker to gain authentication information of an MC Works64 or MobileHMI and perform any operation using the acquired authentication information, by injecting a malicious script in the URL of a monitoring screen delivered from the MC Works64 server or MobileHMI server to an application for mobile devices and leading a legitimate user to access this URL.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 *
iconics mobilehmi *
CVE-2022-23128 HIGH

Incomplete List of Disallowed Inputs vulnerability in Mitsubishi Electric MC Works64 versions 4.00A (10.95.201.23) to 4.04E (10.95.210.01), ICONICS GENESIS64 versions 10.95.3 to 10.97, ICONICS Hyper Historian versions 10.95.3 to 10.97, ICONICS AnalytiX versions 10.95.3 to 10.97 and ICONICS MobileHMI versions 10.95.3 to 10.97 allows a remote unauthenticated attacker to bypass the authentication of MC Works64, GENESIS64, Hyper Historian, AnalytiX and MobileHMI, and gain unauthorized access to the products, by sending specially crafted WebSocket packets to FrameWorX server, one of the functions of the products.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 *
iconics mobilehmi *
iconics hyper_historian *
iconics analytix *
iconics genesis64 *
CVE-2022-23129 LOW

Plaintext Storage of a Password vulnerability in Mitsubishi Electric MC Works64 versions 4.04E (10.95.210.01) and prior and ICONICS GENESIS64 versions 10.90 to 10.97 allows a local authenticated attacker to gain authentication information and to access the database illegally. This is because when configuration information of GridWorX, a database linkage function of GENESIS64 and MC Works64, is exported to a CSV file, the authentication information is saved in plaintext, and an attacker who can access this CSV file can gain the authentication information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-312,

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 *
iconics genesis64 *
CVE-2022-23130 MEDIUM

Buffer Over-read vulnerability in Mitsubishi Electric MC Works64 versions 4.00A (10.95.201.23) to 4.04E (10.95.210.01), ICONICS GENESIS64 versions 10.97 and prior and ICONICS Hyper Historian versions 10.97 and prior allows an attacker to cause a DoS condition in the database server by getting a legitimate user to import a configuration file containing specially crafted stored procedures into GENESIS64 or MC Works64 and execute commands against the database from GENESIS64 or MC Works64.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 *
iconics hyper_historian *
iconics genesis64 *
CVE-2022-24946 HIGH

Improper Resource Locking vulnerability in Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions "16" and prior, Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. "24061" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. "24061" and prior, Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions, Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions, Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions, Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number "24051" and prior and Mitsubishi Electric MELIPC Series MI5122-VW firmware versions "05" and prior allows a remote unauthenticated attacker to cause a denial of service (DoS) condition in Ethernet communications by sending specially crafted packets. A system reset of the products is required for recovery.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-667,

Products Affected

Vendor Product Version
mitsubishielectric q13udpvcpu_firmware -
mitsubishielectric q10udehcpu_firmware -
mitsubishielectric l02scpu-p_firmware -
mitsubishielectric q100udehcpu_firmware -
mitsubishielectric q03udecpu_firmware -
mitsubishielectric q04udpvcpu_firmware -
mitsubishielectric q13udehcpu_firmware -
mitsubishielectric q06ccpu-v_firmware -
mitsubishielectric q06udehcpu_firmware -
mitsubishielectric l26cpu-bt-cm_firmware -
mitsubishielectric q20udehcpu_firmware -
mitsubishielectric l26cpu-pbt_firmware -
mitsubishielectric q06udvcpu_firmware -
mitsubishielectric q26udvcpu_firmware -
mitsubishielectric q04udvcpu_firmware -
mitsubishielectric q06udpvcpu_firmware -
mitsubishielectric l06cpu-p_firmware -
mitsubishielectric l26cpu-bt_firmware -
mitsubishielectric l06cpu_firmware -
mitsubishielectric q04udehcpu_firmware -
mitsubishielectric l02cpu_firmware -
mitsubishielectric l26cpu-(p)bt_firmware -
mitsubishielectric l02cpu-p_firmware -
mitsubishielectric l26cpu_firmware -
mitsubishielectric q26udehcpu_firmware -
mitsubishielectric l02scpu_firmware -
mitsubishielectric q50udehcpu_firmware -
mitsubishielectric q26dhccpu-ls_firmware -
mitsubishielectric l26cpu-p_firmware -
mitsubishielectric q06phcpu_firmware -
mitsubishielectric q13udvcpu_firmware -
mitsubishielectric q26udpvcpu_firmware -
CVE-2022-25155 MEDIUM

Use of Password Hash Instead of Password for Authentication vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5U(C) CPU all versions, Mitsubishi Electric MELSEC iQ-F series FX5UJ CPU all versions, Mitsubishi Electric MELSEC iQ-R series R00/01/02CPU all versions, Mitsubishi Electric MELSEC iQ-R series R04/08/16/32/120(EN)CPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120SFCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PSFCPU all versions, Mitsubishi Electric MELSEC iQ-R series RJ71GN11-T2 all versions, Mitsubishi Electric MELSEC iQ-R series RJ71GN11-EIP all versions, Mitsubishi Electric MELSEC iQ-R series RJ71C24(-R2/R4) all versions, Mitsubishi Electric MELSEC iQ-R series RJ71EN71 all versions, Mitsubishi Electric MELSEC iQ-R series RJ72GF15-T2 all versions, Mitsubishi Electric MELSEC Q series Q03UDECPU all versions, Mitsubishi Electric MELSEC Q series Q04/06/10/13/20/26/50/100UDEHCPU all versions, Mitsubishi Electric MELSEC Q series Q03/04/06/13/26UDVCPU all versions, Mitsubishi Electric MELSEC Q series Q04/06/13/26UDPVCPU all versions, Mitsubishi Electric MELSEC Q series QJ71C24N(-R2/R4) all versions, Mitsubishi Electric MELSEC Q series QJ71E71-100 all versions, Mitsubishi Electric MELSEC Q series QJ72BR15 all versions, Mitsubishi Electric MELSEC Q series QJ72LP25(-25/G/GE) all versions, Mitsubishi Electric MELSEC L series L02/06/26CPU(-P) all versions, Mitsubishi Electric MELSEC L series L26CPU-(P)BT all versions, Mitsubishi Electric MELSEC L series LJ71C24(-R2) all versions, Mitsubishi Electric MELSEC L series LJ71E71-100 all versions and Mitsubishi Electric MELSEC L series LJ72GF15-T2 all versions allows a remote unauthenticated attacker to login to the product by replaying an eavesdropped password hash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mitsubishielectric fx5uj-40mt/ess_firmware -
mitsubishielectric fx5uj-60mt/ess_firmware -
mitsubishielectric fx5uj_firmware -
mitsubishielectric fx5uc-32mt/dss-ts_firmware -
mitsubishielectric fx5uc-32mt/d_firmware -
mitsubishielectric fx5uc_firmware -
mitsubishielectric fx5uc-32mr/ds-ts_firmware -
mitsubishielectric fx5uj-40mt/es_firmware -
mitsubishielectric fx5uj-24mt/es_firmware -
mitsubishielectric fx5uc-32mt/dss_firmware -
mitsubishielectric fx5uj-40mr/es_firmware -
mitsubishielectric fx5uj-60mr/es_firmware -
mitsubishielectric fx5uj-24mr/es_firmware -
mitsubishielectric fx5uc-32mt/ds-ts_firmware -
mitsubishielectric fx5uj-60mt/es_firmware -
mitsubishielectric fx5uj-24mt/ess_firmware -
CVE-2022-25156 MEDIUM

Use of Weak Hash vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5U(C) CPU all versions, Mitsubishi Electric MELSEC iQ-F series FX5UJ CPU all versions, Mitsubishi Electric MELSEC iQ-R series R00/01/02CPU all versions, Mitsubishi Electric MELSEC iQ-R series R04/08/16/32/120(EN)CPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120SFCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PSFCPU all versions, Mitsubishi Electric MELSEC iQ-R series RJ71C24(-R2/R4) all versions, Mitsubishi Electric MELSEC iQ-R series RJ71EN71 all versions, Mitsubishi Electric MELSEC iQ-R series RJ72GF15-T2 all versions, Mitsubishi Electric MELSEC Q series Q03UDECPU all versions, Mitsubishi Electric MELSEC Q series Q04/06/10/13/20/26/50/100UDEHCPU all versions, Mitsubishi Electric MELSEC Q series Q03/04/06/13/26UDVCPU all versions, Mitsubishi Electric MELSEC Q series Q04/06/13/26UDPVCPU all versions, Mitsubishi Electric MELSEC Q series QJ71C24N(-R2/R4) all versions, Mitsubishi Electric MELSEC Q series QJ71E71-100 all versions, Mitsubishi Electric MELSEC Q series QJ72BR15 all versions, Mitsubishi Electric MELSEC Q series QJ72LP25(-25/G/GE) all versions, Mitsubishi Electric MELSEC L series L02/06/26CPU(-P) all versions, Mitsubishi Electric MELSEC L series L26CPU-(P)BT all versions, Mitsubishi Electric MELSEC L series LJ71C24(-R2) all versions, Mitsubishi Electric MELSEC L series LJ71E71-100 all versions and Mitsubishi Electric MELSEC L series LJ72GF15-T2 all versions allows a remote unauthenticated attacker to login to the product by using a password reversed from a previously eavesdropped password hash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-326,

Products Affected

Vendor Product Version
mitsubishielectric fx5uj-40mt/ess_firmware -
mitsubishielectric fx5uj-60mt/ess_firmware -
mitsubishielectric fx5uj_firmware -
mitsubishielectric fx5uc-32mt/dss-ts_firmware -
mitsubishielectric fx5uc-32mt/d_firmware -
mitsubishielectric fx5uc_firmware -
mitsubishielectric fx5uc-32mr/ds-ts_firmware -
mitsubishielectric fx5uj-40mt/es_firmware -
mitsubishielectric fx5uj-24mt/es_firmware -
mitsubishielectric fx5uc-32mt/dss_firmware -
mitsubishielectric fx5uj-40mr/es_firmware -
mitsubishielectric fx5uj-60mr/es_firmware -
mitsubishielectric fx5uj-24mr/es_firmware -
mitsubishielectric fx5uc-32mt/ds-ts_firmware -
mitsubishielectric fx5uj-60mt/es_firmware -
mitsubishielectric fx5uj-24mt/ess_firmware -
CVE-2022-25157 MEDIUM

Use of Password Hash Instead of Password for Authentication vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5U(C) CPU all versions, Mitsubishi Electric MELSEC iQ-F series FX5UJ CPU all versions, Mitsubishi Electric MELSEC iQ-R series R00/01/02CPU all versions, Mitsubishi Electric MELSEC iQ-R series R04/08/16/32/120(EN)CPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120SFCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PSFCPU all versions, Mitsubishi Electric MELSEC iQ-R series R16/32/64MTCPU all versions, Mitsubishi Electric MELSEC iQ-R series RJ71C24(-R2/R4) all versions, Mitsubishi Electric MELSEC iQ-R series RJ71EN71 all versions, Mitsubishi Electric MELSEC iQ-R series RJ71GF11-T2 all versions, Mitsubishi Electric MELSEC iQ-R series RJ71GP21(S)-SX all versions, Mitsubishi Electric MELSEC iQ-R series RJ72GF15-T2 all versions, Mitsubishi Electric MELSEC Q series Q03UDECPU all versions, Mitsubishi Electric MELSEC Q series Q04/06/10/13/20/26/50/100UDEHCPU all versions, Mitsubishi Electric MELSEC Q series Q03/04/06/13/26UDVCPU all versions, Mitsubishi Electric MELSEC Q series Q04/06/13/26UDPVCPU all versions, Mitsubishi Electric MELSEC Q series QJ71C24N(-R2/R4) all versions, Mitsubishi Electric MELSEC Q series QJ71E71-100 all versions, Mitsubishi Electric MELSEC L series L02/06/26CPU(-P) all versions, Mitsubishi Electric MELSEC L series L26CPU-(P)BT all versions, Mitsubishi Electric MELSEC L series LJ71C24(-R2) all versions, Mitsubishi Electric MELSEC L series LJ71E71-100 all versions and Mitsubishi Electric MELSEC L series LJ72GF15-T2 all versions allows a remote unauthenticated attacker to disclose or tamper with the information in the product by using an eavesdropped password hash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mitsubishielectric fx5uj-40mt/ess_firmware -
mitsubishielectric fx5uj-60mt/ess_firmware -
mitsubishielectric fx5uj_firmware -
mitsubishielectric fx5uc-32mt/dss-ts_firmware -
mitsubishielectric fx5uc-32mt/d_firmware -
mitsubishielectric fx5uc_firmware -
mitsubishielectric fx5uc-32mr/ds-ts_firmware -
mitsubishielectric fx5uj-40mt/es_firmware -
mitsubishielectric fx5uj-24mt/es_firmware -
mitsubishielectric fx5uc-32mt/dss_firmware -
mitsubishielectric fx5uj-40mr/es_firmware -
mitsubishielectric fx5uj-60mr/es_firmware -
mitsubishielectric fx5uj-24mr/es_firmware -
mitsubishielectric fx5uc-32mt/ds-ts_firmware -
mitsubishielectric fx5uj-60mt/es_firmware -
mitsubishielectric fx5uj-24mt/ess_firmware -
CVE-2022-25158 MEDIUM

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5U(C) CPU all versions, Mitsubishi Electric MELSEC iQ-F series FX5UJ CPU all versions, Mitsubishi Electric MELSEC iQ-R series R00/01/02CPU all versions, Mitsubishi Electric MELSEC iQ-R series R04/08/16/32/120(EN)CPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120SFCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PSFCPU all versions, Mitsubishi Electric MELSEC iQ-R series RJ71C24(-R2/R4) all versions, Mitsubishi Electric MELSEC iQ-R series RJ71EN71 all versions, Mitsubishi Electric MELSEC iQ-R series RJ71GF11-T2 all versions, Mitsubishi Electric MELSEC iQ-R series RJ71GP21(S)-SX all versions, Mitsubishi Electric MELSEC iQ-R series RJ72GF15-T2 all versions, Mitsubishi Electric MELSEC Q series Q03UDECPU all versions, Mitsubishi Electric MELSEC Q series Q04/06/10/13/20/26/50/100UDEHCPU all versions, Mitsubishi Electric MELSEC Q series Q03/04/06/13/26UDVCPU all versions, Mitsubishi Electric MELSEC Q series Q04/06/13/26UDPVCPU all versions, Mitsubishi Electric MELSEC Q series QJ71C24N(-R2/R4) all versions, Mitsubishi Electric MELSEC Q series QJ71E71-100 all versions, Mitsubishi Electric MELSEC L series L02/06/26CPU(-P) all versions, Mitsubishi Electric MELSEC L series L26CPU-(P)BT all versions, Mitsubishi Electric MELSEC L series LJ71C24(-R2) all versions, Mitsubishi Electric MELSEC L series LJ71E71-100 all versions and Mitsubishi Electric MELSEC L series LJ72GF15-T2 all versions allows a remote attacker to disclose or tamper with a file in which password hash is saved in cleartext.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-312,

Products Affected

Vendor Product Version
mitsubishielectric fx5uj-40mt/ess_firmware -
mitsubishielectric fx5uj-60mt/ess_firmware -
mitsubishielectric fx5uj_firmware -
mitsubishielectric fx5uc-32mt/dss-ts_firmware -
mitsubishielectric fx5uc-32mt/d_firmware -
mitsubishielectric fx5uc_firmware -
mitsubishielectric fx5uc-32mr/ds-ts_firmware -
mitsubishielectric fx5uj-40mt/es_firmware -
mitsubishielectric fx5uj-24mt/es_firmware -
mitsubishielectric fx5uc-32mt/dss_firmware -
mitsubishielectric fx5uj-40mr/es_firmware -
mitsubishielectric fx5uj-60mr/es_firmware -
mitsubishielectric fx5uj-24mr/es_firmware -
mitsubishielectric fx5uc-32mt/ds-ts_firmware -
mitsubishielectric fx5uj-60mt/es_firmware -
mitsubishielectric fx5uj-24mt/ess_firmware -
CVE-2022-25159 MEDIUM

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5U(C) CPU all versions, Mitsubishi Electric MELSEC iQ-F series FX5UJ CPU all versions, Mitsubishi Electric MELSEC iQ-R series R00/01/02CPU all versions, Mitsubishi Electric MELSEC iQ-R series R04/08/16/32/120(EN)CPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120SFCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PSFCPU all versions, Mitsubishi Electric MELSEC iQ-R series R16/32/64MTCPU all versions, Mitsubishi Electric MELSEC iQ-R series RJ71C24(-R2/R4) all versions, Mitsubishi Electric MELSEC iQ-R series RJ71EN71 all versions, Mitsubishi Electric MELSEC iQ-R series RJ72GF15-T2 all versions, Mitsubishi Electric MELSEC Q series Q03/04/06/13/26UDVCPU all versions, Mitsubishi Electric MELSEC Q series Q04/06/13/26UDPVCPU all versions, Mitsubishi Electric MELSEC Q series QJ71C24N(-R2/R4) all versions and Mitsubishi Electric MELSEC Q series QJ71E71-100 all versions allows a remote unauthenticated attacker to login to the product by replay attack.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-294,

Products Affected

Vendor Product Version
mitsubishielectric fx5uj-40mt/ess_firmware -
mitsubishielectric fx5uj-60mt/ess_firmware -
mitsubishielectric fx5uj_firmware -
mitsubishielectric fx5uc-32mt/dss-ts_firmware -
mitsubishielectric fx5uc-32mt/d_firmware -
mitsubishielectric fx5uc_firmware -
mitsubishielectric fx5uc-32mr/ds-ts_firmware -
mitsubishielectric fx5uj-40mt/es_firmware -
mitsubishielectric fx5uj-24mt/es_firmware -
mitsubishielectric fx5uc-32mt/dss_firmware -
mitsubishielectric fx5uj-40mr/es_firmware -
mitsubishielectric fx5uj-60mr/es_firmware -
mitsubishielectric fx5uj-24mr/es_firmware -
mitsubishielectric fx5uc-32mt/ds-ts_firmware -
mitsubishielectric fx5uj-60mt/es_firmware -
mitsubishielectric fx5uj-24mt/ess_firmware -
CVE-2022-25160 MEDIUM

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5U(C) CPU all versions, Mitsubishi Electric MELSEC iQ-F series FX5UJ CPU all versions, Mitsubishi Electric MELSEC iQ-R series R00/01/02CPU all versions, Mitsubishi Electric MELSEC iQ-R series R04/08/16/32/120(EN)CPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120SFCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PCPU all versions, Mitsubishi Electric MELSEC iQ-R series R08/16/32/120PSFCPU all versions, Mitsubishi Electric MELSEC iQ-R series R16/32/64MTCPU all versions, Mitsubishi Electric MELSEC iQ-R series RJ71C24(-R2/R4) all versions, Mitsubishi Electric MELSEC iQ-R series RJ71EN71 all versions, Mitsubishi Electric MELSEC iQ-R series RJ72GF15-T2 all versions, Mitsubishi Electric MELSEC Q series Q03/04/06/13/26UDVCPU all versions, Mitsubishi Electric MELSEC Q series Q04/06/13/26UDPVCPU all versions, Mitsubishi Electric MELSEC Q series QJ71C24N(-R2/R4) all versions and Mitsubishi Electric MELSEC Q series QJ71E71-100 all versions allows a remote unauthenticated attacker to disclose a file in a legitimate user's product by using previously eavesdropped cleartext information and to counterfeit a legitimate user’s system.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-312,

Products Affected

Vendor Product Version
mitsubishielectric fx5uj-40mt/ess_firmware -
mitsubishielectric fx5uj-60mt/ess_firmware -
mitsubishielectric fx5uj_firmware -
mitsubishielectric fx5uc-32mt/dss-ts_firmware -
mitsubishielectric fx5uc-32mt/d_firmware -
mitsubishielectric fx5uc_firmware -
mitsubishielectric fx5uc-32mr/ds-ts_firmware -
mitsubishielectric fx5uj-40mt/es_firmware -
mitsubishielectric fx5uj-24mt/es_firmware -
mitsubishielectric fx5uc-32mt/dss_firmware -
mitsubishielectric fx5uj-40mr/es_firmware -
mitsubishielectric fx5uj-60mr/es_firmware -
mitsubishielectric fx5uj-24mr/es_firmware -
mitsubishielectric fx5uc-32mt/ds-ts_firmware -
mitsubishielectric fx5uj-60mt/es_firmware -
mitsubishielectric fx5uj-24mt/ess_firmware -
CVE-2022-25161 HIGH

Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5U-xMy/z(x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 17X**** or later and versions prior to 1.270, Mitsubishi Electric Mitsubishi Electric MELSEC iQ-F series FX5U-xMy/z(x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 179**** and prior and versions prior to 1.073, MELSEC iQ-F series FX5UC-xMy/z(x=32,64,96, y=T,R, z=D,DSS) with serial number 17X**** or later and versions prior to 1.270, Mitsubishi Electric MELSEC iQ-F series FX5UC-xMy/z(x=32,64,96, y=T,R, z=D,DSS) with serial number 179**** and prior and versions prior to 1.073, Mitsubishi Electric MELSEC iQ-F series FX5UC-32MT/DS-TS versions prior to 1.270, Mitsubishi Electric MELSEC iQ-F series FX5UC-32MT/DSS-TS versions prior to 1.270, Mitsubishi Electric MELSEC iQ-F series FX5UC-32MR/DS-TS versions prior to 1.270, Mitsubishi Electric MELSEC iQ-F series FX5UJ-xMy/z(x=24,40,60, y=T,R, z=ES,ESS) versions prior to 1.030, Mitsubishi Electric MELSEC iQ-F series FX5UJ-xMy/ES-A(x=24,40,60, y=T,R) versions prior to 1.031 and Mitsubishi Electric MELSEC iQ-F series FX5S-xMy/z(x=30,40,60,80, y=T,R, z=ES,ESS) version 1.000 allows a remote unauthenticated attacker to cause a DoS condition for the product's program execution or communication by sending specially crafted packets. System reset of the product is required for recovery.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.6 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H 3.9 4.0

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-fx5uc-32mt/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-32mt/es_firmware *
mitsubishielectric melsec_iq-fx5u-80mt/ds_firmware *
mitsubishielectric melsec_iq-fx5u-80mr/ess_firmware *
mitsubishielectric melsec_iq-fx5s-80mr/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5u-80mt/es_firmware *
mitsubishielectric melsec_iq-fx5u-64mr/ds_firmware *
mitsubishielectric melsec_iq-fx5uj-60mt/es_firmware *
mitsubishielectric melsec_iq-fx5s-40mt/es_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-24mt/ess_firmware *
mitsubhishielectric melsec_iq-fx5u-80mt/dss_firmware *
mitsubishielectric melsec_iq-fx5uc-32mr/ds-ts_firmware *
mitsubishielectric melsec_iq-fx5u-32mt/dss_firmware *
mitsubhishielectric melsec_iq-fx5u-32mt/dss_firmware *
mitsubishielectric melsec_iq-fx5uj-40mt/ess_firmware *
mitsubishielectric melsec_iq-fx5u-64mt/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-64mt/dss_firmware *
mitsubishielectric melsec_iq-fx5s-40mr/es_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-24mt/es-a_firmware *
mitsubhishielectric melsec_iq-fx5u-64mt/ess_firmware *
mitsubhishielectric melsec_iq-fx5u-64mr/ess_firmware *
mitsubishielectric melsec_iq-fx5uj-24mr/es-a_firmware *
mitsubishielectric melsec_iq-fx5u-32mr/ess_firmware *
mitsubishielectric melsec_iq-fx5u-32mt/es_firmware *
mitsubishielectric melsec_iq-fx5uc-96mr/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-80mt/es_firmware *
mitsubishielectric melsec_iq-fx5uj-24mr/ess_firmware *
mitsubishielectric melsec_iq-fx5uc-64mr/dds_firmware *
mitsubishielectric melsec_iq-fx5u-80mr/es_firmware *
mitsubhishielectric melsec_iq-fx5u-80mt/ess_firmware *
mitsubhishielectric melsec_iq-fx5u-32mr/ess_firmware *
mitsubishielectric melsec_iq-fx5uj-24mt/es_firmware *
mitsubishielectric melsec_iq-fx5u-80mr/ds_firmware *
mitsubishielectric melsec_iq-fx5s-60mr/es_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-60mt/ess_firmware *
mitsubishielectric melsec_iq-fx5u-80mt/dss_firmware *
mitsubishielectric melsec_iq-fx5uc-32mt/dds_firmware *
mitsubishielectric melsec_iq-fx5uj-60mr/ess_firmware *
mitsubishielectric melsec_iq-fx5uj-60mr/es-a_firmware *
mitsubishielectric melsec_iq-fx5uj-40mr/es_firmware *
mitsubishielectric melsec_iq-fx5uc-64mt/ds_firmware *
mitsubishielectric melsec_iq-fx5u-64mt/es_firmware *
mitsubishielectric melsec_iq-fx5uc-32mt/dss-ts_firmware *
mitsubhishielectric melsec_iq-fx5u-80mr/ess_firmware *
mitsubishielectric melsec_iq-fx5u-64mt/dss_firmware *
mitsubhishielectric melsec_iq-fx5u-80mr/ds_firmware *
mitsubishielectric melsec_iq-fx5uc-32mr/ds_firmware *
mitsubishielectric melsec_iq-fx5u-32mr/es_firmware *
mitsubishielectric melsec_iq-fx5u-32mt/ds_firmware *
mitsubishielectric melsec_iq-fx5uc-64mt/dds_firmware *
mitsubhishielectric melsec_iq-fx5u-80mt/ds_firmware *
mitsubishielectric melsec_iq-fx5s-40mt/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5u-32mr/ds_firmware *
mitsubishielectric melsec_iq-fx5u-64mr/es_firmware *
mitsubishielectric melsec_iq-fx5s-30mr/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-40mr/es-a_firmware *
mitsubishielectric melsec_iq-fx5uc-64mr/ds_firmware *
mitsubishielectric melsec_iq-fx5uc-32mt/ds-ts_firmware *
mitsubishielectric melsec_iq-fx5u-64mr/ess_firmware *
mitsubishielectric melsec_iq-fx5u-64mr/dss_firmware *
mitsubishielectric melsec_iq-fx5uj-40mt/es-a_firmware *
mitsubishielectric melsec_iq-fx5uj-60mt/es-a_firmware *
mitsubishielectric melsec_iq-fx5s-30mr/es_firmware 1.000
mitsubhishielectric melsec_iq-fx5u-32mr/dss_firmware *
mitsubishielectric melsec_iq-fx5s-60mt/es_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-40mr/ess_firmware *
mitsubishielectric melsec_iq-fx5s-80mt/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5u-64mt/ess_firmware *
mitsubhishielectric melsec_iq-fx5u-64mt/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-32mr/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-32mr/es_firmware *
mitsubishielectric melsec_iq-fx5uj-40mt/es_firmware *
mitsubishielectric melsec_iq-fx5uc-96mt/dds_firmware *
mitsubishielectric melsec_iq-fx5s-80mt/es_firmware 1.000
mitsubishielectric melsec_iq-fx5u-80mt/ess_firmware *
mitsubishielectric melsec_iq-fx5uc-32mr/dds_firmware *
mitsubhishielectric melsec_iq-fx5u-64mr/dss_firmware *
mitsubishielectric melsec_iq-fx5s-60mr/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-24mr/es_firmware *
mitsubishielectric melsec_iq-fx5u-80mr/dss_firmware *
mitsubhishielectric melsec_iq-fx5u-80mr/dss_firmware *
mitsubhishielectric melsec_iq-fx5u-32mt/ess_firmware *
mitsubishielectric melsec_iq-fx5s-30mt/es_firmware 1.000
mitsubishielectric melsec_iq-fx5s-30mt/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5u-32mr/dss_firmware *
mitsubishielectric melsec_iq-fx5uj-60mr/es_firmware *
mitsubishielectric melsec_iq-fx5s-80mr/es_firmware 1.000
mitsubishielectric melsec_iq-fx5uc-96mt/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-32mt/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-64mr/es_firmware *
mitsubishielectric melsec_iq-fx5s-40mr/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5uc-96mr/dds_firmware *
mitsubhishielectric melsec_iq-fx5u-64mr/ds_firmware *
mitsubishielectric melsec_iq-fx5u-32mt/ess_firmware *
mitsubhishielectric melsec_iq-fx5u-64mt/es_firmware *
mitsubhishielectric melsec_iq-fx5u-80mr/es_firmware *
mitsubishielectric melsec_iq-fx5s-60mt/ess_firmware 1.000
CVE-2022-25162 MEDIUM

Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5U-xMy/z(x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 17X**** or later and versions prior to 1.270, Mitsubishi Electric Mitsubishi Electric MELSEC iQ-F series FX5U-xMy/z(x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 179**** and prior and versions prior to 1.073, MELSEC iQ-F series FX5UC-xMy/z(x=32,64,96, y=T,R, z=D,DSS) with serial number 17X**** or later and versions prior to 1.270, Mitsubishi Electric MELSEC iQ-F series FX5UC-xMy/z(x=32,64,96, y=T,R, z=D,DSS) with serial number 179**** and prior and versions prior to 1.073, Mitsubishi Electric MELSEC iQ-F series FX5UC-32MT/DS-TS versions prior to 1.270, Mitsubishi Electric MELSEC iQ-F series FX5UC-32MT/DSS-TS versions prior to 1.270, Mitsubishi Electric MELSEC iQ-F series FX5UC-32MR/DS-TS versions prior to 1.270, Mitsubishi Electric MELSEC iQ-F series FX5UJ-xMy/z(x=24,40,60, y=T,R, z=ES,ESS) versions prior to 1.030, Mitsubishi Electric MELSEC iQ-F series FX5UJ-xMy/ES-A(x=24,40,60, y=T,R) versions prior to 1.031 and Mitsubishi Electric MELSEC iQ-F series FX5S-xMy/z(x=30,40,60,80, y=T,R, z=ES,ESS) version 1.000 allows a remote unauthenticated attacker to cause a temporary DoS condition for the product's communication by sending specially crafted packets.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-fx5uc-32mt/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-32mt/es_firmware *
mitsubishielectric melsec_iq-fx5u-80mt/ds_firmware *
mitsubishielectric melsec_iq-fx5u-80mr/ess_firmware *
mitsubishielectric melsec_iq-fx5s-80mr/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5u-80mt/es_firmware *
mitsubishielectric melsec_iq-fx5u-64mr/ds_firmware *
mitsubishielectric melsec_iq-fx5uj-60mt/es_firmware *
mitsubishielectric melsec_iq-fx5s-40mt/es_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-24mt/ess_firmware *
mitsubhishielectric melsec_iq-fx5u-80mt/dss_firmware *
mitsubishielectric melsec_iq-fx5uc-32mr/ds-ts_firmware *
mitsubishielectric melsec_iq-fx5u-32mt/dss_firmware *
mitsubhishielectric melsec_iq-fx5u-32mt/dss_firmware *
mitsubishielectric melsec_iq-fx5uj-40mt/ess_firmware *
mitsubishielectric melsec_iq-fx5u-64mt/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-64mt/dss_firmware *
mitsubishielectric melsec_iq-fx5s-40mr/es_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-24mt/es-a_firmware *
mitsubhishielectric melsec_iq-fx5u-64mt/ess_firmware *
mitsubhishielectric melsec_iq-fx5u-64mr/ess_firmware *
mitsubishielectric melsec_iq-fx5uj-24mr/es-a_firmware *
mitsubishielectric melsec_iq-fx5u-32mr/ess_firmware *
mitsubishielectric melsec_iq-fx5u-32mt/es_firmware *
mitsubishielectric melsec_iq-fx5uc-96mr/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-80mt/es_firmware *
mitsubishielectric melsec_iq-fx5uj-24mr/ess_firmware *
mitsubishielectric melsec_iq-fx5uc-64mr/dds_firmware *
mitsubishielectric melsec_iq-fx5u-80mr/es_firmware *
mitsubhishielectric melsec_iq-fx5u-80mt/ess_firmware *
mitsubhishielectric melsec_iq-fx5u-32mr/ess_firmware *
mitsubishielectric melsec_iq-fx5uj-24mt/es_firmware *
mitsubishielectric melsec_iq-fx5u-80mr/ds_firmware *
mitsubishielectric melsec_iq-fx5s-60mr/es_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-60mt/ess_firmware *
mitsubishielectric melsec_iq-fx5u-80mt/dss_firmware *
mitsubishielectric melsec_iq-fx5uc-32mt/dds_firmware *
mitsubishielectric melsec_iq-fx5uj-60mr/ess_firmware *
mitsubishielectric melsec_iq-fx5uj-60mr/es-a_firmware *
mitsubishielectric melsec_iq-fx5uj-40mr/es_firmware *
mitsubishielectric melsec_iq-fx5uc-64mt/ds_firmware *
mitsubishielectric melsec_iq-fx5u-64mt/es_firmware *
mitsubishielectric melsec_iq-fx5uc-32mt/dss-ts_firmware *
mitsubhishielectric melsec_iq-fx5u-80mr/ess_firmware *
mitsubishielectric melsec_iq-fx5u-64mt/dss_firmware *
mitsubhishielectric melsec_iq-fx5u-80mr/ds_firmware *
mitsubishielectric melsec_iq-fx5uc-32mr/ds_firmware *
mitsubishielectric melsec_iq-fx5u-32mr/es_firmware *
mitsubishielectric melsec_iq-fx5u-32mt/ds_firmware *
mitsubishielectric melsec_iq-fx5uc-64mt/dds_firmware *
mitsubhishielectric melsec_iq-fx5u-80mt/ds_firmware *
mitsubishielectric melsec_iq-fx5s-40mt/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5u-32mr/ds_firmware *
mitsubishielectric melsec_iq-fx5u-64mr/es_firmware *
mitsubishielectric melsec_iq-fx5s-30mr/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-40mr/es-a_firmware *
mitsubishielectric melsec_iq-fx5uc-64mr/ds_firmware *
mitsubishielectric melsec_iq-fx5uc-32mt/ds-ts_firmware *
mitsubishielectric melsec_iq-fx5u-64mr/ess_firmware *
mitsubishielectric melsec_iq-fx5u-64mr/dss_firmware *
mitsubishielectric melsec_iq-fx5uj-40mt/es-a_firmware *
mitsubishielectric melsec_iq-fx5uj-60mt/es-a_firmware *
mitsubishielectric melsec_iq-fx5s-30mr/es_firmware 1.000
mitsubhishielectric melsec_iq-fx5u-32mr/dss_firmware *
mitsubishielectric melsec_iq-fx5s-60mt/es_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-40mr/ess_firmware *
mitsubishielectric melsec_iq-fx5s-80mt/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5u-64mt/ess_firmware *
mitsubhishielectric melsec_iq-fx5u-64mt/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-32mr/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-32mr/es_firmware *
mitsubishielectric melsec_iq-fx5uj-40mt/es_firmware *
mitsubishielectric melsec_iq-fx5uc-96mt/dds_firmware *
mitsubishielectric melsec_iq-fx5s-80mt/es_firmware 1.000
mitsubishielectric melsec_iq-fx5u-80mt/ess_firmware *
mitsubishielectric melsec_iq-fx5uc-32mr/dds_firmware *
mitsubhishielectric melsec_iq-fx5u-64mr/dss_firmware *
mitsubishielectric melsec_iq-fx5s-60mr/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5uj-24mr/es_firmware *
mitsubishielectric melsec_iq-fx5u-80mr/dss_firmware *
mitsubhishielectric melsec_iq-fx5u-80mr/dss_firmware *
mitsubhishielectric melsec_iq-fx5u-32mt/ess_firmware *
mitsubishielectric melsec_iq-fx5s-30mt/es_firmware 1.000
mitsubishielectric melsec_iq-fx5s-30mt/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5u-32mr/dss_firmware *
mitsubishielectric melsec_iq-fx5uj-60mr/es_firmware *
mitsubishielectric melsec_iq-fx5s-80mr/es_firmware 1.000
mitsubishielectric melsec_iq-fx5uc-96mt/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-32mt/ds_firmware *
mitsubhishielectric melsec_iq-fx5u-64mr/es_firmware *
mitsubishielectric melsec_iq-fx5s-40mr/ess_firmware 1.000
mitsubishielectric melsec_iq-fx5uc-96mr/dds_firmware *
mitsubhishielectric melsec_iq-fx5u-64mr/ds_firmware *
mitsubishielectric melsec_iq-fx5u-32mt/ess_firmware *
mitsubhishielectric melsec_iq-fx5u-64mt/es_firmware *
mitsubhishielectric melsec_iq-fx5u-80mr/es_firmware *
mitsubishielectric melsec_iq-fx5s-60mt/ess_firmware 1.000
CVE-2022-25164

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Mitsubishi Electric MX OPC UA Module Configurator-R versions 1.08J and prior allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated attackers can gain unauthorized access to the MELSEC CPU module and the MELSEC OPC UA server module.

Products Affected

Vendor Product Version
mitsubishielectric mx_opc_ua_module_configurator-r -
mitsubishielectric gx_works3 *
CVE-2022-29825

Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U and GT Designer3 Version1 (GOT2000) versions from 1.122C to 1.290C allows an unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users may view programs and project files or execute programs illegally.

Products Affected

Vendor Product Version
mitsubishielectric gx_works3 *
CVE-2022-29826

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.087R and Motion Control Setting(GX Works3 related software) versions from 1.000A to 1.042U allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users may view programs and project files or execute programs illegally.

Products Affected

Vendor Product Version
mitsubishielectric gx_works3 *
CVE-2022-29827

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated attackers may view programs and project files or execute programs illegally.

Products Affected

Vendor Product Version
mitsubishielectric gx_works3 *
CVE-2022-29828

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated attackers may view programs and project file or execute programs illegally.

Products Affected

Vendor Product Version
mitsubishielectric gx_works3 *
CVE-2022-29829

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 (GOT2000) versions from 1.122C to 1.290C and Motion Control Setting(GX Works3 related software) versions from 1.035M to 1.042U allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users may view programs and project files or execute programs illegally.

Products Affected

Vendor Product Version
mitsubishielectric gx_works3 *
CVE-2022-29830

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Motion Control Setting(GX Works3 related software) versions from 1.000A and later allows a remote unauthenticated attacker to disclose or tamper with sensitive information. As a result, unauthenticated attackers may obtain information about project files illegally.

Products Affected

Vendor Product Version
mitsubishielectric gx_works3 *
CVE-2022-29831

Use of Hard-coded Password vulnerability in Mitsubishi Electric Corporation GX Works3 versions from 1.015R to 1.095Z allows a remote unauthenticated attacker to obtain information about the project file for MELSEC safety CPU modules.

Products Affected

Vendor Product Version
mitsubishielectric gx_works3 *
CVE-2022-29832

Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later, GX Works2 all versions and GX Developer versions 8.40S and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users could obtain information about the project file for MELSEC safety CPU modules or project file for MELSEC Q/FX/L series with security setting.

Products Affected

Vendor Product Version
mitsubishielectric gx_works3 *
CVE-2022-29833

Insufficiently Protected Credentials vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users could access to MELSEC safety CPU modules illgally.

Products Affected

Vendor Product Version
mitsubishielectric gx_works3 *
CVE-2022-33315

Deserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions ICONICS Suite versions 10.97 to 10.97.1, and Mitsubishi Electric MC Works64 versions 4.04E and prior allows an unauthenticated attacker to execute an arbitrary malicious code by leading a user to load a monitoring screen file including malicious XAML codes.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 *
iconics genesis64 10.97
iconics genesis64 10.97.1
CVE-2022-33316

Deserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions ICONICS Suite versions 10.97 to 10.97.1, and Mitsubishi Electric MC Works64 versions 4.04E and prior allows an unauthenticated attacker to execute an arbitrary malicious code by leading a user to load a monitoring screen file including malicious XAML codes.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 *
iconics genesis64 10.97
iconics genesis64 10.97.1
CVE-2022-33317

Inclusion of Functionality from Untrusted Control Sphere vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions ICONICS Suite versions 10.97 to 10.97.1, and Mitsubishi Electric MC Works64 versions 4.04E and prior allows an unauthenticated attacker to execute an arbitrary malicious code by leading a user to load a monitoring screen file including malicious script codes.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 *
iconics genesis64 10.97
iconics genesis64 10.97.1
CVE-2022-33318

Deserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric GENESIS32 versions 9.7 and prior, Mitsubishi Electric Iconics Digital Solutions GENESIS32 versions 9.7 and prior, and Mitsubishi Electric MC Works64 versions 4.04E and prior allows a remote unauthenticated attacker to execute an arbitrary malicious code by sending specially crafted packets to the GENESIS64, ICONICS Suite, GENESIS32, or MC Works64 server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 *
iconics genesis64 10.97
iconics genesis64 10.97.1
CVE-2022-33319

Out-of-bounds Read vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric GENESIS32 versions 9.7 and prior, Mitsubishi Electric Iconics Digital Solutions GENESIS32 versions 9.7 and prior, and Mitsubishi Electric MC Works64 versions 4.04E and prior allows a remote unauthenticated attacker to disclose information on memory or cause a Denial of Service (DoS) condition by sending specially crafted packets to the GENESIS64, ICONICS Suite, GENESIS32, or MC Works64 server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 *
iconics genesis64 10.97
iconics genesis64 10.97.1
CVE-2022-33320

Deserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions ICONICS Suite versions 10.97 to 10.97.1, and Mitsubishi Electric MC Works64 versions 4.04E and prior allows an unauthenticated attacker to execute an arbitrary malicious code by leading a user to load a project configuration file including malicious XML codes.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 *
iconics genesis64 10.97
iconics genesis64 10.97.1
CVE-2022-33321

Cleartext Transmission of Sensitive Information vulnerability due to the use of Basic Authentication for HTTP connections in Mitsubishi Electric consumer electronics products (PHOTOVOLTAIC COLOR MONITOR ECO-GUIDE, HEMS adapter, Wi-Fi Interface, Air Conditioning, Induction hob, Mitsubishi Electric HEMS Energy Measurement Unit, Refrigerator, Remote control with Wi-Fi Interface, BATHROOM THERMO VENTILATOR, Rice cooker, Mitsubishi Electric HEMS control adapter, Energy Recovery Ventilator, Smart Switch, Ventilating Fan, Range hood fan, Energy Measurement Unit and Air Purifier) allows a remote unauthenticated attacker to disclose information in the products or cause a denial of service (DoS) condition as a result by sniffing credential information (username and password). The wide range of models/versions of Mitsubishi Electric consumer electronics products are affected by this vulnerability. As for the affected product models/versions, see the Mitsubishi Electric's advisory which is listed in [References] section.

Products Affected

Vendor Product Version
mitsubishielectric msz-bt20/25/35/50vgk-et3_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2r-et1_firmware *
mitsubishielectric msz-ln25/35/50/60vgr-a1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-e2_firmware *
mitsubishielectric msz-gzy09/12/18vfk_firmware *
mitsubishielectric msz-zt09/12/18vak_firmware *
mitsubishielectric msz-ft25/35/50vgk-et1_firmware *
mitsubishielectric mac-558if-e_firmware *
mitsubishielectric msz-ft25/35/50vgk-sc2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-a1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgks-er2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-et2_firmware *
mitsubishielectric mac-558if-e1_firmware *
mitsubishielectric mac-576if-e1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2v-e1_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgkb-e2_firmware *
mitsubishielectric msz-ap15/20/25/35/42/50/60/71vgk-e2_firmware *
mitsubishielectric msz-ap60/71vgk-et1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-e3_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkb-er1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkw-et2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-er2_firmware *
mitsubishielectric msz-ay25/35/42/50vgk-et1_firmware *
mitsubishielectric msz-ln25/35/50/60vgb-a1_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgks-e2_firmware *
mitsubishielectric msxy-fp05/07/10/13/18/20/24vgk-sg1_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-er2_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkw-er2_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgks-et2_firmware *
mitsubishielectric msz-ln25/35/50vg2v-sc1_firmware *
mitsubishielectric msz-ky09/12/18vfk_firmware *
mitsubishielectric msz-gzt09/12/18vak_firmware *
mitsubishielectric msz-ft25/35/50vgk-sc1_firmware *
mitsubishielectric msz-eza09/12vak_firmware *
mitsubishielectric msz-ln18/25/35/50vg2v-en1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vgb-e1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vgr-e1_firmware *
mitsubishielectric msz-ay25/35/42/50vgk-er1_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-e1_firmware *
mitsubishielectric mac-567ifb-e_firmware *
mitsubishielectric msz-ay25/35/42/50vgkp-er1_firmware *
mitsubishielectric msz-ln25/35/50/60vgr-er1_firmware *
mitsubishielectric msz-ln18/25/35/50vg2w-sc1_firmware *
mitsubishielectric msz-ln25/35/50vg2r-en2_firmware *
mitsubishielectric mfz-gxt50/60/73vfk_firmware *
mitsubishielectric msz-ln18/25/35/50vg2b-en1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-et3_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgkw-e1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2w-er3_firmware *
mitsubishielectric msz-ln25/35/50/60vgv-er1_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-er1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-et1_firmware *
mitsubishielectric msz-ln25/35/50vg2b-en2_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-et1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-er3_firmware *
mitsubishielectric mac-568ifb3-e_firmware *
mitsubishielectric msy-gp10/13/15/18/20/24vfk-sg1_firmware *
mitsubishielectric msz-ft25/35/50vgk-e2_firmware *
mitsubishielectric msz-hr25/35/42/50/60/71vfk-er1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vgv-e1_firmware *
mitsubishielectric msz-ln25/35/50vg2v-en2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-a2_firmware *
mitsubishielectric ma-ew85s-e_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-e2_firmware *
mitsubishielectric s-mac-702if-f_firmware *
mitsubishielectric mac-588if-e_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-e6_firmware *
mitsubishielectric s-mac-905if_firmware *
mitsubishielectric msz-ln25/35/50/60vg2w-et3_firmware *
mitsubishielectric msz-ft25/35/50vgk-e1_firmware *
mitsubishielectric mac-557if-e_firmware *
mitsubishielectric mac-557if-e1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkw-er1_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-e8_firmware *
mitsubishielectric msz-ln25/35/50vg2b-sc1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vgw-e1_firmware *
mitsubishielectric msz-ln25/35/50/60vgb-er1_firmware *
mitsubishielectric msz-ln25/35/50/60vgv-a1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-er3_firmware *
mitsubishielectric mfz-xt50/60vfk_firmware *
mitsubishielectric msz-rw25/35/50vg-er1_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-er1_firmware *
mitsubishielectric msz-rw25/35/50vg-sc1_firmware *
mitsubishielectric pac-wf010-e_firmware *
mitsubishielectric msz-ap60/71vgk-er1_firmware *
mitsubishielectric msz-fx20/25vfk_firmware *
mitsubishielectric msz-ay25/35/42/50vgkp-e6_firmware *
mitsubishielectric msz-ay25/35/42/50vgk-sc1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgks-a1_firmware *
mitsubishielectric msz-ft20/25vfk_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-a2_firmware *
mitsubishielectric msz-ap60/71vgk-e1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkb-et2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-er2_firmware *
mitsubishielectric msz-zy09/12/18vfk_firmware *
mitsubishielectric msz-hr25/35/42/50/60/71vfk-e1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkb-a1_firmware *
mitsubishielectric msz-hr25/35/42/50vfk-e6_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-et3_firmware *
mitsubishielectric mac-507if-e_firmware *
mitsubishielectric msz-ay25/35/42/50vgk-e1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2v-et1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2b-et1_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-e7_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-et3_firmware *
mitsubishielectric mac-566ifb-e_firmware *
mitsubishielectric s-mac-702if-b_firmware *
mitsubishielectric msz-ay25/35/42/50vgk-e6_firmware *
mitsubishielectric msz-wx18/20/25vfk_firmware *
mitsubishielectric msz-ln18/25/35/50vg2w-en1_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-et2_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-et1_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-e1_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-en2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-et2_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2b-e1_firmware *
mitsubishielectric mac-587if2-e_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkw-et1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-a1_firmware *
mitsubishielectric msz-hr25/35/42/50/60/71vfk-et1_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgks-e1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgks-et1_firmware *
mitsubishielectric msz-ap25/35/42/50/60/71vgk-er3_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-en3_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgkb-e1_firmware *
mitsubishielectric msz-ln18/25/35/50vg2r-en1_firmware *
mitsubishielectric mac-568ifb-e_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2r-e3_firmware *
mitsubishielectric msz-ap22/25/35/42/50/61/70/80vgkd-a1_firmware *
mitsubishielectric mac-559if-e1_firmware *
mitsubishielectric msz-rw25/35/50vg-e1_firmware *
mitsubishielectric msz-exa09/12vak_firmware *
mitsubishielectric mac-559if-e_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-er2_firmware *
mitsubishielectric mac-567ifb2-e_firmware *
mitsubishielectric pac-whs01wf-e_firmware *
mitsubishielectric s-mac-702if-z_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgks-er1_firmware *
mitsubishielectric msz-ap22/25/35/42/50/60/71/80vgkd-a2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-er1_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-en1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkb-er2_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-er1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2v-e3_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-er2_firmware *
mitsubishielectric msz-ay25/35/42/50vgkp-et1_firmware *
mitsubishielectric s-mac-906if_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-e1_firmware *
mitsubishielectric mac-587if-e_firmware *
mitsubishielectric s-mac-002if_firmware *
mitsubishielectric ma-ew85s-uk_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkb-et1_firmware *
mitsubishielectric msz-ln25/35/50vg2w-en2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-a1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2r-e2_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2r-e1_firmware *
mitsubishielectric msz-ap15/20/25/35/42/50/60/71vgk-et2_firmware *
mitsubishielectric msz-ln25/35/50vg2r-sc1_firmware *
mitsubishielectric mac-568ifb2-e_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2v-e2_firmware *
mitsubishielectric msz-ap25/35/42/50/60/71vgk-e3_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-et2_firmware *
mitsubishielectric msz-rw25/35/50vg-et1_firmware *
mitsubishielectric mac-568if-e_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-e3_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-er3_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgkw-e2_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2b-e3_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-et2_firmware *
mitsubishielectric msz-ap25/35/42/50/60/71vgk-et3_firmware *
mitsubishielectric msz-ln25/35/50/60vgw-er1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-a2_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2b-e2_firmware *
mitsubishielectric msz-ap15/20/25/35/42/50/60/71vgk-er2_firmware *
mitsubishielectric msz-ay25/35/42/50vgkp-sc1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkw-a1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-er1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-er1_firmware *
CVE-2022-33322

Cross-site scripting vulnerability in Mitsubishi Electric consumer electronics products (Air Conditioning, Wi-Fi Interface, Refrigerator, HEMS adapter, Remote control with Wi-Fi Interface, BATHROOM THERMO VENTILATOR, Rice cooker, Mitsubishi Electric HEMS control adapter, Energy Recovery Ventilator, Smart Switch and Air Purifier) allows a remote unauthenticated attacker to execute an malicious script on a user's browser to disclose information, etc. The wide range of models/versions of Mitsubishi Electric consumer electronics products are affected by this vulnerability. As for the affected product models/versions, see the Mitsubishi Electric's advisory which is listed in [References] section.

Products Affected

Vendor Product Version
mitsubishielectric msz-bt20/25/35/50vgk-et3_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-e2_firmware *
mitsubishielectric msz-gzy09/12/18vfk_firmware *
mitsubishielectric msz-ft25/35/50vgk-et1_firmware *
mitsubishielectric msz-ft25/35/50vgk-sc2_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgks-er2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-et2_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgkb-e2_firmware *
mitsubishielectric msz-ap15/20/25/35/42/50/60/71vgk-e2_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-e3_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkb-er1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkw-et2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-er2_firmware *
mitsubishielectric msz-ay25/35/42/50vgk-et1_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgks-e2_firmware *
mitsubishielectric msxy-fp05/07/10/13/18/20/24vgk-sg1_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-er2_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkw-er2_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgks-et2_firmware *
mitsubishielectric msz-ln25/35/50vg2v-sc1_firmware *
mitsubishielectric msz-ky09/12/18vfk_firmware *
mitsubishielectric msz-ft25/35/50vgk-sc1_firmware *
mitsubishielectric msz-eza09/12vak_firmware *
mitsubishielectric msz-ay25/35/42/50vgk-er1_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-e1_firmware *
mitsubishielectric msz-ay25/35/42/50vgkp-er1_firmware *
mitsubishielectric msz-ln18/25/35/50vg2w-sc1_firmware *
mitsubishielectric msz-ln25/35/50vg2r-en2_firmware *
mitsubishielectric mfz-gxt50/60/73vfk_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-et3_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgkw-e1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2w-er3_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-er1_firmware *
mitsubishielectric msz-ln25/35/50vg2b-en2_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-et1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-er3_firmware *
mitsubishielectric msy-gp10/13/15/18/20/24vfk-sg1_firmware *
mitsubishielectric msz-ft25/35/50vgk-e2_firmware *
mitsubishielectric msz-hr25/35/42/50/60/71vfk-er1_firmware *
mitsubishielectric msz-ln25/35/50vg2v-en2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-a2_firmware *
mitsubishielectric ma-ew85s-e_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-e2_firmware *
mitsubishielectric mac-588if-e_firmware *
mitsubishielectric msz-ln25/35/50/60vg2w-et3_firmware *
mitsubishielectric msz-ft25/35/50vgk-e1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkw-er1_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-e8_firmware *
mitsubishielectric msz-ln25/35/50vg2b-sc1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-er3_firmware *
mitsubishielectric mfz-xt50/60vfk_firmware *
mitsubishielectric msz-rw25/35/50vg-er1_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-er1_firmware *
mitsubishielectric msz-rw25/35/50vg-sc1_firmware *
mitsubishielectric msz-ay25/35/42/50vgkp-e6_firmware *
mitsubishielectric msz-ay25/35/42/50vgk-sc1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgks-a1_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-a2_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkb-et2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-er2_firmware *
mitsubishielectric msz-zy09/12/18vfk_firmware *
mitsubishielectric msz-hr25/35/42/50/60/71vfk-e1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkb-a1_firmware *
mitsubishielectric msz-hr25/35/42/50vfk-e6_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-et3_firmware *
mitsubishielectric mac-507if-e_firmware *
mitsubishielectric msz-ay25/35/42/50vgk-e1_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-e7_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-et3_firmware *
mitsubishielectric msz-ay25/35/42/50vgk-e6_firmware *
mitsubishielectric msz-wx18/20/25vfk_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-et2_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-et1_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-e1_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-en2_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-et2_firmware *
mitsubishielectric mac-587if2-e_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkw-et1_firmware *
mitsubishielectric msz-hr25/35/42/50/60/71vfk-et1_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgks-e1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgks-et1_firmware *
mitsubishielectric msz-ap25/35/42/50/60/71vgk-er3_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-en3_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgkb-e1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2r-e3_firmware *
mitsubishielectric msz-ap22/25/35/42/50/61/70/80vgkd-a1_firmware *
mitsubishielectric msz-rw25/35/50vg-e1_firmware *
mitsubishielectric msz-exa09/12vak_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-er2_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgks-er1_firmware *
mitsubishielectric msz-ap22/25/35/42/50/60/71/80vgkd-a2_firmware *
mitsubishielectric msz-ap25/35/42/50vgk-en1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkb-er2_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2v-e3_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-er2_firmware *
mitsubishielectric msz-ay25/35/42/50vgkp-et1_firmware *
mitsubishielectric mac-587if-e_firmware *
mitsubishielectric s-mac-002if_firmware *
mitsubishielectric ma-ew85s-uk_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkb-et1_firmware *
mitsubishielectric msz-ln25/35/50vg2w-en2_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2r-e2_firmware *
mitsubishielectric msz-ap15/20/25/35/42/50/60/71vgk-et2_firmware *
mitsubishielectric msz-ln25/35/50vg2r-sc1_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2v-e2_firmware *
mitsubishielectric msz-ap25/35/42/50/60/71vgk-e3_firmware *
mitsubishielectric msz-ln25/35/50/60vg2v-et2_firmware *
mitsubishielectric msz-rw25/35/50vg-et1_firmware *
mitsubishielectric msz-bt20/25/35/50vgk-e3_firmware *
mitsubishielectric msz-ln25/35/50/60vg2b-er3_firmware *
mitsubishielectric msz-ef18/22/25/35/42/50vgkw-e2_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2b-e3_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2w-et2_firmware *
mitsubishielectric msz-ap25/35/42/50/60/71vgk-et3_firmware *
mitsubishielectric msz-ln25/35/50/60vg2r-a2_firmware *
mitsubishielectric msz-ln18/25/35/50/60vg2b-e2_firmware *
mitsubishielectric msz-ap15/20/25/35/42/50/60/71vgk-er2_firmware *
mitsubishielectric msz-ay25/35/42/50vgkp-sc1_firmware *
mitsubishielectric msz-ef22/25/35/42/50vgkw-a1_firmware *
CVE-2022-33323

Active Debug Code vulnerability in robot controller of Mitsubishi Electric Corporation industrial robot MELFA SD/SQ Series and MELFA F-Series allows a remote unauthenticated attacker to gain unauthorized access by authentication bypass through an unauthorized telnet login. As for the affected model names, controller types and firmware versions, see the Mitsubishi Electric's advisory which is listed in [References] section.

Products Affected

Vendor Product Version
mitsubishielectric rh-3sqhr_firmware -
mitsubishielectric rh-6sqh55_firmware -
mitsubishielectric rv-3sq_firmware -
mitsubishielectric rv-12sd_firmware -
mitsubishielectric rv-12sq_firmware -
mitsubishielectric rh-20sdh100_firmware -
mitsubishielectric rh-12sdh55_firmware -
mitsubishielectric rh-3fh35_firmware -
mitsubishielectric rh-6sdh55_firmware -
mitsubishielectric rv-2sqb_firmware -
mitsubishielectric rh-12fh70_firmware -
mitsubishielectric rh-6fh55_firmware -
mitsubishielectric rv-3sd_firmware -
mitsubishielectric rv-20f_firmware -
mitsubishielectric rv-13fl_firmware -
mitsubishielectric rv-6sq_firmware -
mitsubishielectric rv-3sdj_firmware -
mitsubishielectric rh-12sqh70_firmware -
mitsubishielectric rv-7fl_firmware -
mitsubishielectric rh-12fh85_firmware -
mitsubishielectric rh-6fh35_firmware -
mitsubishielectric rh-6fh45_firmware -
mitsubishielectric rv-12sql_firmware -
mitsubishielectric rv-4f_firmware -
mitsubishielectric rh-20fh85_firmware -
mitsubishielectric rh-12sdh70_firmware -
mitsubishielectric rv-7fll_firmware -
mitsubishielectric rh-6sdh45_firmware -
mitsubishielectric rh-12sdh85_firmware -
mitsubishielectric rh-6sqh45_firmware -
mitsubishielectric rv-2f_firmware -
mitsubishielectric rh-3sdhr_firmware -
mitsubishielectric rh-3fh55_firmware -
mitsubishielectric rv-13f_firmware -
mitsubishielectric rv-3sqj_firmware -
mitsubishielectric rv-2sdb_firmware -
mitsubishielectric rv-7f_firmware -
mitsubishielectric rh-6sdh35_firmware -
mitsubishielectric rh-3fh45_firmware -
mitsubishielectric rh-20sqh85_firmware -
mitsubishielectric rv-12sdl_firmware -
mitsubishielectric rh-12fh55_firmware -
mitsubishielectric rh-20sdh85_firmware -
mitsubishielectric rh-12sqh85_firmware -
mitsubishielectric rh-20fh100_firmware -
mitsubishielectric rh-12sqh55_firmware -
mitsubishielectric rv-6sdl_firmware -
mitsubishielectric rv-6sql_firmware -
mitsubishielectric rv-6sd_firmware -
mitsubishielectric rv-4fl_firmware -
mitsubishielectric rh-6sqh35_firmware -
CVE-2022-40265

Improper Input Validation vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series RJ71EN71 Firmware version "65" and prior and Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120ENCPU Network Part Firmware version "65" and prior allows a remote unauthenticated attacker to cause a Denial of Service condition by sending specially crafted packets. A system reset is required for recovery.

Products Affected

Vendor Product Version
mitsubishielectric r04encpu_firmware *
mitsubishielectric r08encpu_firmware *
mitsubishielectric r120encpu_firmware *
mitsubishielectric rj71en71_firmware *
mitsubishielectric r32encpu_firmware *
mitsubishielectric r16encpu_firmware *
CVE-2022-40266

Improper Input Validation vulnerability in Mitsubishi Electric GOT2000 Series GT27 model FTP server versions 01.39.000 and prior, Mitsubishi Electric GOT2000 Series GT25 model FTP server versions 01.39.000 and prior and Mitsubishi Electric GOT2000 Series GT23 model FTP server versions 01.39.000 and prior allows a remote authenticated attacker to cause a Denial of Service condition by sending specially crafted command.

Products Affected

Vendor Product Version
mitsubishielectric got2000_gt27_firmware *
mitsubishielectric got2000_gt25_firmware *
mitsubishielectric got2000_gt23_firmware *
CVE-2022-40267

Predictable Seed in Pseudo-Random Number Generator (PRNG) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DSS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/z (x=24,40,60, y=T,R, z=ES,ESS) versions 1.042 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/ES-A (x=24,40,60, y=T,R) versions 1.043 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5S-xMy/z (x=30,40,60,80, y=T,R, z=ES,ESS) versions 1.003 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MR/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU versions 33 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU versions 66 and prior allows a remote unauthenticated attacker to access the Web server function by guessing the random numbers used for authentication from several used random numbers.

Products Affected

Vendor Product Version
mitsubishielectric fx5u-64mt/dss_firmware -
mitsubishielectric fx5s-60mr/es_firmware *
mitsubishielectric fx5s-40mt/ess_firmware *
mitsubishielectric fx5uc-96mt/d_firmware -
mitsubishielectric fx5uc-96mt/dss_firmware -
mitsubishielectric fx5uj-60mr/es-a_firmware *
mitsubishielectric fx5uc-32mt/dss_firmware -
mitsubishielectric fx5s-80mt/es_firmware *
mitsubishielectric fx5uj-60mt/es_firmware *
mitsubishielectric fx5s-40mt/es_firmware *
mitsubishielectric fx5uj-40mr/es_firmware *
mitsubishielectric r08cpu_firmware -
mitsubishielectric fx5uj-24mt/ess_firmware *
mitsubishielectric fx5u-80mt/dss_firmware -
mitsubishielectric fx5uj-60mt/ess_firmware *
mitsubishielectric r120cpu_firmware -
mitsubishielectric fx5uc-32mt/d_firmware -
mitsubishielectric r00cpu_firmware -
mitsubishielectric r120encpu_firmware -
mitsubishielectric fx5s-80mr/es_firmware *
mitsubishielectric r02cpu_firmware -
mitsubishielectric fx5uj-40mt/ess_firmware *
mitsubishielectric fx5uj-24mr/es_firmware *
mitsubishielectric r01cpu_firmware -
mitsubishielectric fx5s-60mt/es_firmware *
mitsubishielectric fx5s-60mt/ess_firmware *
mitsubishielectric fx5uj-24mt/es-a_firmware *
mitsubishielectric fx5uj-40mt/es-a_firmware *
mitsubishielectric r16encpu_firmware -
mitsubishielectric fx5uj-24mr/es-a_firmware *
mitsubishielectric fx5uj-40mr/es-a_firmware *
mitsubishielectric fx5s-30mr/es_firmware *
mitsubishielectric r04encpu_firmware -
mitsubishielectric fx5uc-32mt/dss-ts_firmware *
mitsubishielectric fx5s-30mt/ess_firmware *
mitsubishielectric fx5s-30mt/es_firmware *
mitsubishielectric fx5uc-64mt/dss_firmware -
mitsubishielectric fx5u-32mt/dss_firmware -
mitsubishielectric r08encpu_firmware -
mitsubishielectric fx5uj-40mt/es_firmware *
mitsubishielectric fx5uj-60mt/es-a_firmware *
mitsubishielectric r32cpu_firmware -
mitsubishielectric r32encpu_firmware -
mitsubishielectric fx5s-40mr/es_firmware *
mitsubishielectric fx5uc-32mr/ds-ts_firmware *
mitsubishielectric r16cpu_firmware -
mitsubishielectric fx5uj-24mt/es_firmware *
mitsubishielectric r04cpu_firmware -
mitsubishielectric fx5uj-60mr/es_firmware *
mitsubishielectric fx5s-80mt/ess_firmware *
mitsubishielectric fx5uc-64mt/d_firmware -
mitsubishielectric fx5u-80mt/ess_firmware -
mitsubishielectric fx5uc-32mt/ds-ts_firmware *
CVE-2022-40268

Improper Restriction of Rendered UI Layers or Frames vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.14.000 to 01.47.000, Mitsubishi Electric Corporation GOT2000 Series GT25 model versions 01.14.000 to 01.47.000 and Mitsubishi Electric Corporation GT SoftGOT2000 versions 1.265B to 1.285X allows a remote unauthenticated attacker to lead legitimate users to perform unintended operations through clickjacking.

Products Affected

Vendor Product Version
mitsubishielectric gt25_firmware *
mitsubishielectric gt27_firmware *
mitsubishielectric gt_softgot2000 *
CVE-2022-40269

Authentication Bypass by Spoofing vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.14.000 to 01.47.000, Mitsubishi Electric Corporation GOT2000 Series GT25 model versions 01.14.000 to 01.47.000 and Mitsubishi Electric Corporation GT SoftGOT2000 versions 1.265B to 1.285X allows a remote unauthenticated attacker to disclose sensitive information from users' browsers or spoof legitimate users by abusing inappropriate HTML attributes.

Products Affected

Vendor Product Version
mitsubishielectric gt25_firmware *
mitsubishielectric gt27_firmware *
mitsubishielectric gt_softgot2000 *
CVE-2023-0457

Plaintext Storage of a Password vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series, MELSEC iQ-R Series, MELSEC-Q Series and MELSEC-L Series allows a remote unauthenticated attacker to disclose plaintext credentials stored in project files and login into FTP server or Web server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
mitsubishielectric fx5uj-24mr/es-a_firmware *
mitsubishielectric fx5uj-40mr/es-a_firmware *
mitsubishielectric fx5s-30mr/es_firmware *
mitsubishielectric fx5s-60mr/es_firmware *
mitsubishielectric fx5s-40mt/ess_firmware *
mitsubishielectric fx5uc-32mt/dss-ts_firmware *
mitsubishielectric fx5uc-96mt/dss_firmware *
mitsubishielectric fx5s-30mt/ess_firmware *
mitsubishielectric fx5uj-60mr/es-a_firmware *
mitsubishielectric fx5s-30mt/es_firmware *
mitsubishielectric fx5s-80mt/es_firmware *
mitsubishielectric fx5uj-60mt/es_firmware *
mitsubishielectric fx5uc-64mt/dss_firmware *
mitsubishielectric fx5uj-40mt/es_firmware *
mitsubishielectric fx5uj-60mt/es-a_firmware *
mitsubishielectric fx5s-40mt/es_firmware *
mitsubishielectric fx5uj-40mr/es_firmware *
mitsubishielectric fx5uc-32mt/dss_firmware *
mitsubishielectric fx5uj-24mt/ess_firmware *
mitsubishielectric fx5s-40mr/es_firmware *
mitsubishielectric fx5uj-60mt/ess_firmware *
mitsubishielectric fx5uc-32mr/ds-ts_firmware *
mitsubishielectric fx5s-80mr/es_firmware *
mitsubishielectric fx5uc-64mt/d_firmware *
mitsubishielectric fx5uj-24mt/es_firmware *
mitsubishielectric fx5uj-40mt/ess_firmware *
mitsubishielectric fx5uc-32mt/d_firmware *
mitsubishielectric fx5uj-24mr/es_firmware *
mitsubishielectric fx5uc-96mt/d_firmware *
mitsubishielectric fx5uj-60mr/es_firmware *
mitsubishielectric fx5s-60mt/es_firmware *
mitsubishielectric fx5s-80mt/ess_firmware *
mitsubishielectric fx5-enet_firmware -
mitsubishielectric fx5s-60mt/ess_firmware *
mitsubishielectric fx5uc-32mt/ds-ts_firmware *
mitsubishielectric fx5uj-24mt/es-a_firmware *
mitsubishielectric fx5uj-40mt/es-a_firmware *
mitsubishielectric fx5-enet/ip_firmware -
CVE-2023-0525

Weak Encoding for Password vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.49.000 and prior, GT25 model versions 01.49.000 and prior, GT23 model versions 01.49.000 and prior, GT21 model versions 01.49.000 and prior, GOT SIMPLE Series GS25 model versions 01.49.000 and prior, GS21 model versions 01.49.000 and prior, GT Designer3 Version1 (GOT2000) versions 1.295H and prior and GT SoftGOT2000 versions 1.295H and prior allows a remote unauthenticated attacker to obtain plaintext passwords by sniffing packets containing encrypted passwords and decrypting the encrypted passwords, in the case of transferring data with GT Designer3 Version1(GOT2000) and GOT2000 Series or GOT SIMPLE Series with the Data Transfer Security function enabled, or in the case of transferring data by the SoftGOT-GOT link function with GT SoftGOT2000 and GOT2000 series with the Data Transfer Security function enabled.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
mitsubishielectric gt25_firmware *
mitsubishielectric gt27_firmware *
mitsubishielectric gs25_firmware *
mitsubishielectric gt23_firmware *
mitsubishielectric gt21_firmware *
mitsubishielectric gs21_firmware *
mitsubishielectric gt_designer3 *
mitsubishielectric gt_softgot2000 *
CVE-2023-1285

Signal Handler Race Condition vulnerability in Mitsubishi Electric India GC-ENET-COM whose first 2 digits of 11-digit serial number of unit are "16" allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition in Ethernet communication by sending a large number of specially crafted packets to any UDP port when GC-ENET-COM is configured as a Modbus TCP Server. The communication resumes only when the power of the main unit is turned off and on or when the GC-ENET-COM is hot-swapped from the main unit.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
mitsubishielectric gc-enet-com_firmware -
CVE-2023-1424

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules and MELSEC iQ-R Series CPU modules allows a remote unauthenticated attacker to cause a denial of service (DoS) condition or execute malicious code on a target product by sending specially crafted packets. A system reset of the product is required for recovery from a denial of service (DoS) condition and malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 10.0 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 3.9 6.0

Products Affected

Vendor Product Version
mitsubishielectric melsec_iq-fx5u-32mt/ds_firmware -
mitsubishielectric melsec_iq-fx5u-32mt/dss_firmware -
mitsubishielectric melsec_iq-fx5u-32mt/ess_firmware -
mitsubishielectric melsec_iq-fx5u-80mr/dss_firmware -
mitsubishielectric melsec_iq-fx5u-64mr/dss_firmware -
mitsubishielectric melsec_iq-fx5u-64mt/ds_firmware -
mitsubishielectric melsec_iq-fx5u-80mr/es_firmware -
mitsubishielectric melsec_iq-fx5u-80mt/ds_firmware -
mitsubishielectric melsec_iq-fx5uc-96mr/ds_firmware -
mitsubishielectric melsec_iq-fx5u-32mt/es_firmware -
mitsubishielectric melsec_iq-fx5u-64mr/ess_firmware -
mitsubishielectric melsec_iq-fx5u-64mt/es_firmware -
mitsubishielectric melsec_iq-fx5uc-64mr/ds_firmware -
mitsubishielectric melsec_iq-fx5u-64mt/dss_firmware -
mitsubishielectric melsec_iq-fx5uc-64mt/ds_firmware -
mitsubishielectric melsec_iq-fx5uc-64mt/dds_firmware -
mitsubishielectric melsec_iq-fx5u-32mr/dss_firmware -
mitsubishielectric melsec_iq-fx5u-32mr/ess_firmware -
mitsubishielectric melsec_iq-fx5uc-96mt/dds_firmware -
mitsubishielectric melsec_iq-fx5uc-96mt/ds_firmware -
mitsubishielectric melsec_iq-fx5uc-32mr/ds_firmware -
mitsubishielectric melsec_iq-fx5u-80mt/es_firmware -
mitsubishielectric melsec_iq-fx5u-32mr/es_firmware -
mitsubishielectric melsec_iq-fx5uc-32mr/dds_firmware -
mitsubishielectric melsec_iq-fx5uc-64mr/dds_firmware -
mitsubishielectric melsec_iq-fx5uc-32mt/ds_firmware -
mitsubishielectric melsec_iq-fx5uc-32mt/dss-ts_firmware -
mitsubishielectric melsec_iq-fx5u-64mr/es_firmware -
mitsubishielectric melsec_iq-fx5u-80mr/ds_firmware -
mitsubishielectric melsec_iq-fx5uc-32mt/dds_firmware -
mitsubishielectric melsec_iq-fx5u-80mt/ess_firmware -
mitsubishielectric melsec_iq-fx5uc-96mr/dds_firmware -
mitsubishielectric melsec_iq-fx5u-64mt/ess_firmware -
mitsubishielectric melsec_iq-fx5u-80mr/ess_firmware -
mitsubishielectric melsec_iq-fx5u-80mt/dss_firmware -
mitsubishielectric melsec_iq-fx5u-32mr/ds_firmware -
mitsubishielectric melsec_iq-fx5u-64mr/ds_firmware -
mitsubishielectric melsec_iq-fx5uc-32mr/ds-ts_firmware -
mitsubishielectric melsec_iq-fx5uc-32mt/ds-ts_firmware -
CVE-2023-1618

Active Debug Code vulnerability in Mitsubishi Electric Corporation MELSEC WS Series WS0-GETH00200 Serial number 2310 **** and prior allows a remote unauthenticated attacker to bypass authentication and illegally log into the affected module by connecting to it via telnet which is hidden function and is enabled by default when shipped from the factory. As a result, a remote attacker with unauthorized login can reset the module, and if certain conditions are met, he/she can disclose or tamper with the module's configuration or rewrite the firmware.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
mitsubishielectric melsec_ws0-geth00200_firmware *
CVE-2023-2060

Weak Password Requirements vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to access to the module via FTP by dictionary attack or password sniffing.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
mitsubishielectric rj71eip91_firmware -
mitsubishielectric sw1dnn-eipctfx5-bd_firmware -
mitsubishielectric sw1dnn-eipct-bd_firmware -
mitsubishielectric fx5-enet/ip_firmware -
CVE-2023-2061

Use of Hard-coded Password vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to obtain a hard-coded password and access to the module via FTP.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
mitsubishielectric rj71eip91_firmware -
mitsubishielectric sw1dnn-eipctfx5-bd_firmware -
mitsubishielectric sw1dnn-eipct-bd_firmware -
mitsubishielectric fx5-enet/ip_firmware -
CVE-2023-2062

Missing Password Field Masking vulnerability in Mitsubishi Electric Corporation EtherNet/IP configuration tools SW1DNN-EIPCT-BD and SW1DNN-EIPCTFX5-BD allows a remote unauthenticated attacker to know the password for MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP. This vulnerability results in authentication bypass vulnerability, which allows the attacker to access MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP via FTP.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
mitsubishielectric rj71eip91_firmware -
mitsubishielectric sw1dnn-eipctfx5-bd_firmware -
mitsubishielectric sw1dnn-eipct-bd_firmware -
mitsubishielectric fx5-enet/ip_firmware -
CVE-2023-2063

Unrestricted Upload of File with Dangerous Type vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to cause information disclosure, tampering, deletion or destruction via file upload/download. As a result, the attacker may be able to exploit this for further attacks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

Products Affected

Vendor Product Version
mitsubishielectric rj71eip91_firmware -
mitsubishielectric sw1dnn-eipctfx5-bd_firmware -
mitsubishielectric sw1dnn-eipct-bd_firmware -
mitsubishielectric fx5-enet/ip_firmware -
CVE-2023-2846

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series main modules allows a remote unauthenticated attacker to cancel the password/keyword setting and login to the affected products by sending specially crafted packets.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
mitsubishielectric fx3g-14mr/ds_firmware -
mitsubishielectric fx3g-60mt/ds_firmware -
mitsubishielectric fx3g-60mr/es-a_firmware -
mitsubishielectric fx3u-80mr/es_firmware -
mitsubishielectric fx3u-16mr/es_firmware -
mitsubishielectric fx3u-16mr/ds_firmware -
mitsubishielectric fx3u-80mt/es-a_firmware -
mitsubishielectric fx3g-40mt/es-a_firmware -
mitsubishielectric fx3s-20mt/ds_firmware -
mitsubishielectric fx3u-48mt/es_firmware -
mitsubishielectric fx3s-14mt/ess_firmware -
mitsubishielectric fx3s-14mt/ds_firmware -
mitsubishielectric fx3g-14mr/es-a_firmware -
mitsubishielectric fx3uc-32mt-lt-2_firmware -
mitsubishielectric fx3s-30mt/es_firmware -
mitsubishielectric fx3ge-40mt/ds_firmware -
mitsubishielectric fx3u-80mt/ess_firmware -
mitsubishielectric fx3ge-40mt/ess_firmware -
mitsubishielectric fx3s-20mr/ds_firmware -
mitsubishielectric fx3u-64ms/es_firmware -
mitsubishielectric fx3g-40mt/es_firmware -
mitsubishielectric fx3sa-10mr-cm_firmware -
mitsubishielectric fx3u-32mt/es-a_firmware -
mitsubishielectric fx3sa-20mr-cm_firmware -
mitsubishielectric fx3u-80mt/es_firmware -
mitsubishielectric fx3uc-64mt/d_firmware -
mitsubishielectric fx3g-24mt/dss_firmware -
mitsubishielectric fx3ge-40mr/es_firmware -
mitsubishielectric fx3g-60mt/es_firmware -
mitsubishielectric fx3g-60mt/ess_firmware -
mitsubishielectric fx3s-30mt/ds_firmware -
mitsubishielectric fx3ge-24mr/es_firmware -
mitsubishielectric fx3gc-32mt/dss_firmware -
mitsubishielectric fx3gc-32mt/d_firmware -
mitsubishielectric fx3uc-64mt/dss_firmware -
mitsubishielectric fx3g-60mt/dss_firmware -
mitsubishielectric fx3ga-40mt-cm_firmware -
mitsubishielectric fx3u-32mt/es_firmware -
mitsubishielectric fx3s-10mr/ds_firmware -
mitsubishielectric fx3u-128mr/es_firmware -
mitsubishielectric fx3u-16mt/es-a_firmware -
mitsubishielectric fx3g-40mr/es-a_firmware -
mitsubishielectric fx3s-30mr/es_firmware -
mitsubishielectric fx3s-10mt/ess_firmware -
mitsubishielectric fx3u-128mt/es-a_firmware -
mitsubishielectric fx3ge-24mt/ds_firmware -
mitsubishielectric fx3u-48mr/es_firmware -
mitsubishielectric fx3u-32mt/ds_firmware -
mitsubishielectric fx3g-24mr/ds_firmware -
mitsubishielectric fx3u-16mr/es-a_firmware -
mitsubishielectric fx3ge-40mt/dss_firmware -
mitsubishielectric fx3g-60mt/es-a_firmware -
mitsubishielectric fx3ge-40mt/es_firmware -
mitsubishielectric fx3uc-32mt-lt_firmware -
mitsubishielectric fx3sa-10mt-cm_firmware -
mitsubishielectric fx3g-24mt/ess_firmware -
mitsubishielectric fx3u-16mt/dss_firmware -
mitsubishielectric fx3uc-96mt/dss_firmware -
mitsubishielectric fx3u-48mt/dss_firmware -
mitsubishielectric fx3s-10mt/es_firmware -
mitsubishielectric fx3u-32mt/dss_firmware -
mitsubishielectric fx3u-64mr/es-a_firmware -
mitsubishielectric fx3u-48mt/ess_firmware -
mitsubishielectric fx3ge-24mt/ess_firmware -
mitsubishielectric fx3g-40mr/ds_firmware -
mitsubishielectric fx3sa-14mt-cm_firmware -
mitsubishielectric fx3u-64mt/ess_firmware -
mitsubishielectric fx3u-32mr/ua1_firmware -
mitsubishielectric fx3g-40mt/ess_firmware -
mitsubishielectric fx3uc-96mt/d_firmware -
mitsubishielectric fx3uc-32mt/d_firmware -
mitsubishielectric fx3sa-30mt-cm_firmware -
mitsubishielectric fx3u-48mt/ds_firmware -
mitsubishielectric fx3g-14mt/es_firmware -
mitsubishielectric fx3u-16mt/ess_firmware -
mitsubishielectric fx3u-80mr/ds_firmware -
mitsubishielectric fx3u-64mr/ua1_firmware -
mitsubishielectric fx3u-64mr/ds_firmware -
mitsubishielectric fx3u-64mt/dss_firmware -
mitsubishielectric fx3u-80mr/es-a_firmware -
mitsubishielectric fx3u-128mt/ess_firmware -
mitsubishielectric fx3g-24mt/ds_firmware -
mitsubishielectric fx3u-128mt/es_firmware -
mitsubishielectric fx3uc-32mt/dss_firmware -
mitsubishielectric fx3uc-16mt/d-p4_firmware -
mitsubishielectric fx3ga-60mr-cm_firmware -
mitsubishielectric fx3sa-20mt-cm_firmware -
mitsubishielectric fx3s-10mr/es_firmware -
mitsubishielectric fx3s-14mr/es_firmware -
mitsubishielectric fx3ge-40mr/ds_firmware -
mitsubishielectric fx3ge-24mt/dss_firmware -
mitsubishielectric fx3u-48mr/es-a_firmware -
mitsubishielectric fx3g-14mt/dss_firmware -
mitsubishielectric fx3ge-24mr/ds_firmware -
mitsubishielectric fx3s-30mt/es-2ad_firmware -
mitsubishielectric fx3g-14mt/ds_firmware -
mitsubishielectric fx3s-20mr/es_firmware -
mitsubishielectric fx3s-20mt/ess_firmware -
mitsubishielectric fx3g-60mr/ds_firmware -
mitsubishielectric fx3u-64mt/es-a_firmware -
mitsubishielectric fx3u-32mr/es-a_firmware -
mitsubishielectric fx3g-14mr/es_firmware -
mitsubishielectric fx3u-32mr/ds_firmware -
mitsubishielectric fx3s-30mt/ess_firmware -
mitsubishielectric fx3uc-16mt/d_firmware -
mitsubishielectric fx3s-30mt/dss_firmware -
mitsubishielectric fx3g-24mr/es-a_firmware -
mitsubishielectric fx3ga-60mt-cm_firmware -
mitsubishielectric fx3ga-40mr-cm_firmware -
mitsubishielectric fx3g-40mr/es_firmware -
mitsubishielectric fx3s-20mt/es_firmware -
mitsubishielectric fx3g-24mt/es_firmware -
mitsubishielectric fx3g-40mt/dss_firmware -
mitsubishielectric fx3g-14mt/es-a_firmware -
mitsubishielectric fx3u-32mt/ess_firmware -
mitsubishielectric fx3s-14mr/ds_firmware -
mitsubishielectric fx3sa-30mr-cm_firmware -
mitsubishielectric fx3s-14mt/es_firmware -
mitsubishielectric fx3s-30mr/ds_firmware -
mitsubishielectric fx3s-10mt/ds_firmware -
mitsubishielectric fx3s-10mt/dss_firmware -
mitsubishielectric fx3g-24mt/es-a_firmware -
mitsubishielectric fx3ge-24mt/es_firmware -
mitsubishielectric fx3s-30mt/ess-2ad_firmware -
mitsubishielectric fx3u-32mr/es_firmware -
mitsubishielectric fx3s-14mt/dss_firmware -
mitsubishielectric fx3u-64mt/es_firmware -
mitsubishielectric fx3u-128mr/es-a_firmware -
mitsubishielectric fx3s-20mt/dss_firmware -
mitsubishielectric fx3uc-16mr/ds-t_firmware -
mitsubishielectric fx3sa-14mr-cm_firmware -
mitsubishielectric fx3uc-16mt/dss_firmware -
mitsubishielectric fx3u-64mt/ds_firmware -
mitsubishielectric fx3g-40mt/ds_firmware -
mitsubishielectric fx3g-14mt/ess_firmware -
mitsubishielectric fx3u-32ms/es_firmware -
mitsubishielectric fx3u-48mt/es-a_firmware -
mitsubishielectric fx3ga-24mr-cm_firmware -
mitsubishielectric fx3u-16mt/ds_firmware -
mitsubishielectric fx3uc-16mr/d-t_firmware -
mitsubishielectric fx3uc-16mt/dss-p4_firmware -
mitsubishielectric fx3s-30mr/es-2ad_firmware -
mitsubishielectric fx3ga-24mt-cm_firmware -
mitsubishielectric fx3u-16mt/es_firmware -
mitsubishielectric fx3u-80mt/ds_firmware -
mitsubishielectric fx3u-48mr/ds_firmware -
mitsubishielectric fx3g-60mr/es_firmware -
mitsubishielectric fx3u-80mt/dss_firmware -
mitsubishielectric fx3g-24mr/es_firmware -
mitsubishielectric fx3u-64mr/es_firmware -
CVE-2023-3346

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition and execute arbitrary code on the product by sending specially crafted packets. In addition, system reset is required for recovery.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
mitsubishielectric m80w_firmware -
mitsubishielectric m750vs_firmware -
mitsubishielectric m800vw_firmware -
mitsubishielectric e70_firmware -
mitsubishielectric m730vw_firmware -
mitsubishielectric m800w_firmware -
mitsubishielectric e80_firmware -
mitsubishielectric m720vw_firmware -
mitsubishielectric m80_firmware -
mitsubishielectric m730vs_15-type_firmware -
mitsubishielectric m720vs_15-type_firmware -
mitsubishielectric m750vw_firmware -
mitsubishielectric m800vs_firmware -
mitsubishielectric c80_firmware -
mitsubishielectric m730vs_firmware -
mitsubishielectric m720vs_firmware -
mitsubishielectric m750vs_15-type_firmware -
mitsubishielectric m800s_firmware -
mitsubishielectric m70v_firmware -
mitsubishielectric m80v_firmware -
mitsubishielectric m80vw_firmware -
CVE-2023-3373

Predictable Exact Value from Previous Values vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT21 model versions 01.49.000 and prior and GOT SIMPLE Series GS21 model versions 01.49.000 and prior allows a remote unauthenticated attacker to hijack data connections (session hijacking) or prevent legitimate users from establishing data connections (to cause DoS condition) by guessing the listening port of the data connection on FTP server and connecting to it.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:L 1.6 4.2

Products Affected

Vendor Product Version
mitsubishielectric gt21_firmware *
mitsubishielectric gs21_firmware *
CVE-2023-4088

Incorrect Default Permissions vulnerability in Mitsubishi Electric Corporation multiple FA engineering software products allows a malicious local attacker to execute a malicious code, resulting in information disclosure, tampering with and deletion, or a denial-of-service (DoS) condition, if the product is installed in a folder other than the default installation folder.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 9.3 CRITICAL CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 2.5 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
mitsubishielectric gx_works3 *
CVE-2023-4562

Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending illegitimate messages.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
mitsubishielectric fx3g-14mr/ds_firmware -
mitsubishielectric fx3g-60mt/ds_firmware -
mitsubishielectric fx3g-60mr/es-a_firmware -
mitsubishielectric fx3u-80mr/es_firmware -
mitsubishielectric fx3u-16mr/es_firmware -
mitsubishielectric fx3u-16mr/ds_firmware -
mitsubishielectric fx3u-80mt/es-a_firmware -
mitsubishielectric fx3g-40mt/es-a_firmware -
mitsubishielectric fx3g-24_mr/es_firmware -
mitsubishielectric fx3g-24_mt/ess_firmware -
mitsubishielectric fx3s-20mt/ds_firmware -
mitsubishielectric fx3g-60_mr/ds_firmware -
mitsubishielectric fx3u-48mt/es_firmware -
mitsubishielectric fx3s-14mt/ess_firmware -
mitsubishielectric fx3s-14mt/ds_firmware -
mitsubishielectric fx3g-14mr/es-a_firmware -
mitsubishielectric fx3uc-32mt-lt-2_firmware -
mitsubishielectric fx3s-30mt/es_firmware -
mitsubishielectric fx3g-24_mt/es_firmware -
mitsubishielectric fx3g-32_mt/dss_firmware -
mitsubishielectric fx3g-cnv-adp_firmware -
mitsubishielectric fx3ge-40mt/ds_firmware -
mitsubishielectric fx3u-80mt/ess_firmware -
mitsubishielectric fx3ge-40mt/ess_firmware -
mitsubishielectric fx3s-20mr/ds_firmware -
mitsubishielectric fx3g-14_mr/ds_firmware -
mitsubishielectric fx3u-64ms/es_firmware -
mitsubishielectric fx3g-40mt/es_firmware -
mitsubishielectric fx3sa-10mr-cm_firmware -
mitsubishielectric fx3u-32mt/es-a_firmware -
mitsubishielectric fx3sa-20mr-cm_firmware -
mitsubishielectric fx3u-80mt/es_firmware -
mitsubishielectric fx3uc_firmware -
mitsubishielectric fx3uc-64mt/d_firmware -
mitsubishielectric fx3g-24mt/dss_firmware -
mitsubishielectric fx3ge-40mr/es_firmware -
mitsubishielectric fx3u-enet-p502_firmware -
mitsubishielectric fx3g-60mt/es_firmware -
mitsubishielectric fx3g-60mt/ess_firmware -
mitsubishielectric fx3u-enet-l_firmware -
mitsubishielectric fx3g-24_mr/ds_firmware -
mitsubishielectric fx3s-30mt/ds_firmware -
mitsubishielectric fx3ge-24mr/es_firmware -
mitsubishielectric fx3g-60_mt/ess_firmware -
mitsubishielectric fx3g-4da-pnk-adp_firmware -
mitsubishielectric fx3gc-32mt/dss_firmware -
mitsubishielectric fx3gc-32mt/d_firmware -
mitsubishielectric fx3uc-64mt/dss_firmware -
mitsubishielectric fx3g-60mt/dss_firmware -
mitsubishielectric fx3ga-40mt-cm_firmware -
mitsubishielectric fx3g-4ad-ptw-adp_firmware -
mitsubishielectric fx3g-4ad-adp_firmware -
mitsubishielectric fx3g-60_mt/es_firmware -
mitsubishielectric fx3u-32mt/es_firmware -
mitsubishielectric fx3s-10mr/ds_firmware -
mitsubishielectric fx3u-128mr/es_firmware -
mitsubishielectric fx3u-16mt/es-a_firmware -
mitsubishielectric fx3g-40mr/es-a_firmware -
mitsubishielectric fx3s-30mr/es_firmware -
mitsubishielectric fx3s-10mt/ess_firmware -
mitsubishielectric fx3g-60_mt/dss_firmware -
mitsubishielectric fx3u-128mt/es-a_firmware -
mitsubishielectric fx3ge-24mt/ds_firmware -
mitsubishielectric fx3u-48mr/es_firmware -
mitsubishielectric fx3u-32mt/ds_firmware -
mitsubishielectric fx3g-24mr/ds_firmware -
mitsubishielectric fx3u-16mr/es-a_firmware -
mitsubishielectric fx3ge-40mt/dss_firmware -
mitsubishielectric fx3g-60mt/es-a_firmware -
mitsubishielectric fx3ge-40mt/es_firmware -
mitsubishielectric fx3g-40_mt/ess_firmware -
mitsubishielectric fx3uc-32mt-lt_firmware -
mitsubishielectric fx3sa-10mt-cm_firmware -
mitsubishielectric fx3g-14_mr/es_firmware -
mitsubishielectric fx3g-24mt/ess_firmware -
mitsubishielectric fx3u-16mt/dss_firmware -
mitsubishielectric fx3uc-96mt/dss_firmware -
mitsubishielectric fx3g-4ad-tc-adp_firmware -
mitsubishielectric fx3u-48mt/dss_firmware -
mitsubishielectric fx3s-10mt/es_firmware -
mitsubishielectric fx3u-32mt/dss_firmware -
mitsubishielectric fx3u-64mr/es-a_firmware -
mitsubishielectric fx3u-48mt/ess_firmware -
mitsubishielectric fx3g-14_mt/ds_firmware -
mitsubishielectric fx3ge-24mt/ess_firmware -
mitsubishielectric fx3g-40mr/ds_firmware -
mitsubishielectric fx3sa-14mt-cm_firmware -
mitsubishielectric fx3u-64mt/ess_firmware -
mitsubishielectric fx3u-32mr/ua1_firmware -
mitsubishielectric fx3u-enet_firmware -
mitsubishielectric fx3g-40mt/ess_firmware -
mitsubishielectric fx3g-485adp(-mb)_firmware -
mitsubishielectric fx3uc-96mt/d_firmware -
mitsubishielectric fx3g-40_mr/ds_firmware -
mitsubishielectric fx3uc-32mt/d_firmware -
mitsubishielectric fx3sa-30mt-cm_firmware -
mitsubishielectric fx3u-48mt/ds_firmware -
mitsubishielectric fx3g-14mt/es_firmware -
mitsubishielectric fx3u-16mt/ess_firmware -
mitsubishielectric fx3u-80mr/ds_firmware -
mitsubishielectric fx3u-64mr/ua1_firmware -
mitsubishielectric fx3u-64mr/ds_firmware -
mitsubishielectric fx3u-64mt/dss_firmware -
mitsubishielectric fx3u-80mr/es-a_firmware -
mitsubishielectric fx3g-24_mt/ds_firmware -
mitsubishielectric fx3u-128mt/ess_firmware -
mitsubishielectric fx3g-24mt/ds_firmware -
mitsubishielectric fx3u-128mt/es_firmware -
mitsubishielectric fx3uc-32mt/dss_firmware -
mitsubishielectric fx3g-40_mr/es_firmware -
mitsubishielectric fx3uc-16mt/d-p4_firmware -
mitsubishielectric fx3g-40_mt/ds_firmware -
mitsubishielectric fx3ga-60mr-cm_firmware -
mitsubishielectric fx3sa-20mt-cm_firmware -
mitsubishielectric fx3s-10mr/es_firmware -
mitsubishielectric fx3s-14mr/es_firmware -
mitsubishielectric fx3ge-40mr/ds_firmware -
mitsubishielectric fx3ge-24mt/dss_firmware -
mitsubishielectric fx3u-48mr/es-a_firmware -
mitsubishielectric fx3g-14mt/dss_firmware -
mitsubishielectric fx3ge-24mr/ds_firmware -
mitsubishielectric fx3s-30mt/es-2ad_firmware -
mitsubishielectric fx3g-60_mr/es_firmware -
mitsubishielectric fx3g-14mt/ds_firmware -
mitsubishielectric fx3s-20mr/es_firmware -
mitsubishielectric fx3s-20mt/ess_firmware -
mitsubishielectric fx3g-60mr/ds_firmware -
mitsubishielectric fx3u-64mt/es-a_firmware -
mitsubishielectric fx3g-4da-adp_firmware -
mitsubishielectric fx3u-32mr/es-a_firmware -
mitsubishielectric fx3g-14mr/es_firmware -
mitsubishielectric fx3u-32mr/ds_firmware -
mitsubishielectric fx3s-30mt/ess_firmware -
mitsubishielectric fx3g-60_mt/ds_firmware -
mitsubishielectric fx3g-40_mt/dss_firmware -
mitsubishielectric fx3uc-16mt/d_firmware -
mitsubishielectric fx3s-30mt/dss_firmware -
mitsubishielectric fx3g-24mr/es-a_firmware -
mitsubishielectric fx3ga-60mt-cm_firmware -
mitsubishielectric fx3ga-40mr-cm_firmware -
mitsubishielectric fx3g-40mr/es_firmware -
mitsubishielectric fx3s-20mt/es_firmware -
mitsubishielectric fx3g-24mt/es_firmware -
mitsubishielectric fx3g-40mt/dss_firmware -
mitsubishielectric fx3g-14mt/es-a_firmware -
mitsubishielectric fx3u-32mt/ess_firmware -
mitsubishielectric fx3s-14mr/ds_firmware -
mitsubishielectric fx3sa-30mr-cm_firmware -
mitsubishielectric fx3s-14mt/es_firmware -
mitsubishielectric fx3s-30mr/ds_firmware -
mitsubishielectric fx3s-10mt/ds_firmware -
mitsubishielectric fx3s-10mt/dss_firmware -
mitsubishielectric fx3g-24mt/es-a_firmware -
mitsubishielectric fx3g-4ad-pt-adp_firmware -
mitsubishielectric fx3ge-24mt/es_firmware -
mitsubishielectric fx3g-3a-adp_firmware -
mitsubishielectric fx3s-30mt/ess-2ad_firmware -
mitsubishielectric fx3u-32mr/es_firmware -
mitsubishielectric fx3s-14mt/dss_firmware -
mitsubishielectric fx3g-24_mt/dss_firmware -
mitsubishielectric fx3gc_firmware -
mitsubishielectric fx3u-64mt/es_firmware -
mitsubishielectric fx3u-128mr/es-a_firmware -
mitsubishielectric fx3s-20mt/dss_firmware -
mitsubishielectric fx3uc-16mr/ds-t_firmware -
mitsubishielectric fx3sa-14mr-cm_firmware -
mitsubishielectric fx3uc-16mt/dss_firmware -
mitsubishielectric fx3u-64mt/ds_firmware -
mitsubishielectric fx3g-40mt/ds_firmware -
mitsubishielectric fx3g-14_mt/es_firmware -
mitsubishielectric fx3g-14mt/ess_firmware -
mitsubishielectric fx3g-232adp(-mb)_firmware -
mitsubishielectric fx3u-32ms/es_firmware -
mitsubishielectric fx3g-40_mt/es_firmware -
mitsubishielectric fx3u-48mt/es-a_firmware -
mitsubishielectric fx3ga-24mr-cm_firmware -
mitsubishielectric fx3u-16mt/ds_firmware -
mitsubishielectric fx3uc-16mr/d-t_firmware -
mitsubishielectric fx3uc-16mt/dss-p4_firmware -
mitsubishielectric fx3s-30mr/es-2ad_firmware -
mitsubishielectric fx3ga-24mt-cm_firmware -
mitsubishielectric fx3u-16mt/es_firmware -
mitsubishielectric fx3u-80mt/ds_firmware -
mitsubishielectric fx3u-48mr/ds_firmware -
mitsubishielectric fx3g-60mr/es_firmware -
mitsubishielectric fx3u-80mt/dss_firmware -
mitsubishielectric fx3g-24mr/es_firmware -
mitsubishielectric fx3u-64mr/es_firmware -
mitsubishielectric fx3g-14_mt/dss_firmware -
mitsubishielectric fx3g-14_mt/ess_firmware -
CVE-2023-4625

Improper Restriction of Excessive Authentication Attempts vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F/iQ-R Series CPU modules Web server function allows a remote unauthenticated attacker to prevent legitimate users from logging into the Web server function for a certain period after the attacker has attempted to log in illegally by continuously attempting unauthorized login to the Web server function. The impact of this vulnerability will persist while the attacker continues to attempt unauthorized login.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
mitsubishielectric fx5uj-60mt/ess_firmware -
mitsubishielectric fx5uj-40mt/es-a_firmware -
mitsubishielectric fx5s-60mt/es_firmware -
mitsubishielectric fx5u-64mt/dss_firmware -
mitsubishielectric fx5s-30mt/es_firmware -
mitsubishielectric fx5s-30mr/es_firmware -
mitsubishielectric fx5u-32mr/es_firmware -
mitsubishielectric fx5uj-60mt/dss_firmware -
mitsubishielectric fx5uc-96mt/d_firmware -
mitsubishielectric fx5u-80mt/es_firmware -
mitsubishielectric fx5uc-96mt/dss_firmware -
mitsubishielectric fx5uc-32mt/dss_firmware -
mitsubishielectric fx5s-60mr/es_firmware -
mitsubishielectric fx5s-60mt/ess_firmware -
mitsubishielectric fx5u-32mt/ess_firmware -
mitsubishielectric fx5u-64mt/ess_firmware -
mitsubishielectric fx5uj-40mr/ds_firmware -
mitsubishielectric fx5uj-40mt/dss_firmware -
mitsubishielectric fx5uj-60mt/es-a_firmware -
mitsubishielectric fx5s-30mt/ess_firmware -
mitsubishielectric fx5u-80mt/dss_firmware -
mitsubishielectric fx5u-64mt/es_firmware -
mitsubishielectric fx5uc-32mt/d_firmware -
mitsubishielectric fx5s-80mt/es_firmware -
mitsubishielectric fx5uj-40mt/es_firmware -
mitsubishielectric fx5uj-24mr/ds_firmware -
mitsubishielectric fx5uj-24mr/es-a_firmware -
mitsubishielectric fx5u-64mr/ds_firmware -
mitsubishielectric fx5u-80mr/es_firmware -
mitsubishielectric fx5uj-24mt/es-a_firmware -
mitsubishielectric fx5u-32mt/es_firmware -
mitsubishielectric fx5uj-60mt/es_firmware -
mitsubishielectric fx5uj-40mt/ess_firmware -
mitsubishielectric fx5s-80mr/es_firmware -
mitsubishielectric fx5u-64mr/es_firmware -
mitsubishielectric fx5uc-32mr/ds-ts_firmware -
mitsubishielectric fx5u-80mt/ds_firmware -
mitsubishielectric fx5uj-60mr/es-a_firmware -
mitsubishielectric fx5uj-24mt/es_firmware -
mitsubishielectric fx5uc-64mt/dss_firmware -
mitsubishielectric fx5uj-24mt/dss_firmware -
mitsubishielectric fx5u-32mt/dss_firmware -
mitsubishielectric fx5uj-40mr/es_firmware -
mitsubishielectric fx5uc-32mt/ds-ts_firmware -
mitsubishielectric fx5uj-40mt/ds_firmware -
mitsubishielectric fx5u-32mt/ds_firmware -
mitsubishielectric fx5uj-24mt/ds_firmware -
mitsubishielectric fx5uj-60mr/ds_firmware -
mitsubishielectric fx5uj-60mt/ds_firmware -
mitsubishielectric fx5s-40mt/ess_firmware -
mitsubishielectric fx5s-80mt/ess_firmware -
mitsubishielectric fx5uc-32mt/dss-ts_firmware -
mitsubishielectric fx5s-40mr/es_firmware -
mitsubishielectric fx5uj-40mr/es-a_firmware -
mitsubishielectric fx5uj-60mr/es_firmware -
mitsubishielectric fx5uc-64mt/d_firmware -
mitsubishielectric fx5u-32mr/ds_firmware -
mitsubishielectric fx5uj-24mr/es_firmware -
mitsubishielectric fx5s-40mt/es_firmware -
mitsubishielectric fx5u-80mt/ess_firmware -
mitsubishielectric fx5u-80mr/ds_firmware -
mitsubishielectric fx5u-64mt/ds_firmware -
mitsubishielectric fx5uj-24mt/ess_firmware -
CVE-2023-4699

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELSEC iQ-L series, MELSEC Q series, MELSEC-L series, Mitsubishi Electric CNC M800V/M80V series, Mitsubishi Electric CNC M800/M80/E80 series and Mitsubishi Electric CNC M700V/M70V/E70 series allows a remote unauthenticated attacker to execute arbitrary commands by sending specific packets to the affected products. This could lead to disclose or tamper with information by reading or writing control programs, or cause a denial-of-service (DoS) condition on the products by resetting the memory contents of the products to factory settings or resetting the products remotely.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

Products Affected

Vendor Product Version
mitsubishielectric fx5uj-60mt/ess_firmware -
mitsubishielectric fx5uj-40mt/es-a_firmware -
mitsubishielectric fx3u-16mr/es_firmware -
mitsubishielectric fx5s-60mt/es_firmware -
mitsubishielectric fx3u-80mt/es-a_firmware -
mitsubishielectric fx3g-40mt/es-a_firmware -
mitsubishielectric fx5s-30mr/es_firmware -
mitsubishielectric fx3u-48mt/es_firmware -
mitsubishielectric fx5u-80mt/es_firmware -
mitsubishielectric fx5s-60mr/es_firmware -
mitsubishielectric fx5u-64mt/ess_firmware -
mitsubishielectric fx3ge-40mt/ds_firmware -
mitsubishielectric fx3u-80mt/ess_firmware -
mitsubishielectric fx3u-64ms/es_firmware -
mitsubishielectric fx3g-40mt/es_firmware -
mitsubishielectric fx3u-32mt/es-a_firmware -
mitsubishielectric fx3sa-20mr-cm_firmware -
mitsubishielectric fx3u-80mt/es_firmware -
mitsubishielectric fx3g-60mt/ess_firmware -
mitsubishielectric fx3u-128mt/dss_firmware -
mitsubishielectric fx3s-30mt/ds_firmware -
mitsubishielectric fx5uj-40mt/es_firmware -
mitsubishielectric fx3ge-24mr/es_firmware -
mitsubishielectric fx3gc-32mt/dss_firmware -
mitsubishielectric fx3ga-40mt-cm_firmware -
mitsubishielectric fx3s-10mr/ds_firmware -
mitsubishielectric fx3u-16mt/es-a_firmware -
mitsubishielectric fx3g-40mr/es-a_firmware -
mitsubishielectric fx3s-10mt/ess_firmware -
mitsubishielectric fx5uj-60mr/es-a_firmware -
mitsubishielectric fx3u-128mt/es-a_firmware -
mitsubishielectric fx3u-48mr/es_firmware -
mitsubishielectric fx3u-32mt/ds_firmware -
mitsubishielectric fx3g-24mr/ds_firmware -
mitsubishielectric fx5uc-32mt/ds-ts_firmware -
mitsubishielectric fx3u-16mr/es-a_firmware -
mitsubishielectric fx5uj-40mt/ds_firmware -
mitsubishielectric fx3ge-40mt/dss_firmware -
mitsubishielectric fx3uc-32mt-lt_firmware -
mitsubishielectric fx3sa-10mt-cm_firmware -
mitsubishielectric fx5u-32mt/ds_firmware -
mitsubishielectric fx5uj-24mt/ds_firmware -
mitsubishielectric fx5uc-32mt/dss-ts_firmware -
mitsubishielectric fx3uc-96mt/dss_firmware -
mitsubishielectric fx3u-48mt/dss_firmware -
mitsubishielectric fx3u-64mr/es-a_firmware -
mitsubishielectric fx3u-48mt/ess_firmware -
mitsubishielectric fx3ge-24mt/ess_firmware -
mitsubishielectric fx3g-40mr/ds_firmware -
mitsubishielectric fx3u-64mt/ess_firmware -
mitsubishielectric fx3u-32mr/ua1_firmware -
mitsubishielectric fx5uj-60mr/es_firmware -
mitsubishielectric fx5uc-64mt/d_firmware -
mitsubishielectric fx3uc-32mt/d_firmware -
mitsubishielectric fx5s-40mt/es_firmware -
mitsubishielectric fx3sa-30mt-cm_firmware -
mitsubishielectric fx5u-64mt/ds_firmware -
mitsubishielectric fx5u-64mt/dss_firmware -
mitsubishielectric fx5s-30mt/es_firmware -
mitsubishielectric fx3u-64mr/ua1_firmware -
mitsubishielectric fx3u-64mr/ds_firmware -
mitsubishielectric fx5uc-96mt/d_firmware -
mitsubishielectric fx3u-128mt/ess_firmware -
mitsubishielectric fx3uc-16mt/d-p4_firmware -
mitsubishielectric fx3ga-60mr-cm_firmware -
mitsubishielectric fx5uj-40mr/ds_firmware -
mitsubishielectric fx5uj-60mt/es-a_firmware -
mitsubishielectric fx3s-10mr/es_firmware -
mitsubishielectric fx3ge-40mr/ds_firmware -
mitsubishielectric fx3ge-24mt/dss_firmware -
mitsubishielectric fx3u-48mr/es-a_firmware -
mitsubishielectric fx3g-14mt/ds_firmware -
mitsubishielectric fx3s-20mr/es_firmware -
mitsubishielectric fx5u-64mt/es_firmware -
mitsubishielectric fx3g-60mr/ds_firmware -
mitsubishielectric fx5uc-32mt/d_firmware -
mitsubishielectric fx3u-64mt/es-a_firmware -
mitsubishielectric fx3g-14mr/es_firmware -
mitsubishielectric fx5uj-24mr/ds_firmware -
mitsubishielectric fx3u-32mr/ds_firmware -
mitsubishielectric fx3s-30mt/ess_firmware -
mitsubishielectric fx5uj-24mr/es-a_firmware -
mitsubishielectric fx3s-30mt/dss_firmware -
mitsubishielectric fx3g-24mr/es-a_firmware -
mitsubishielectric fx5uj-24mt/es-a_firmware -
mitsubishielectric fx3ga-60mt-cm_firmware -
mitsubishielectric fx3ga-40mr-cm_firmware -
mitsubishielectric fx3g-40mr/es_firmware -
mitsubishielectric fx3s-20mt/es_firmware -
mitsubishielectric fx5u-32mt/es_firmware -
mitsubishielectric fx3g-40mt/dss_firmware -
mitsubishielectric fx3g-14mt/es-a_firmware -
mitsubishielectric fx3s-14mr/ds_firmware -
mitsubishielectric fx3sa-30mr-cm_firmware -
mitsubishielectric fx3s-14mt/es_firmware -
mitsubishielectric fx3s-30mr/ds_firmware -
mitsubishielectric fx5u-64mr/es_firmware -
mitsubishielectric fx3s-10mt/ds_firmware -
mitsubishielectric fx3s-10mt/dss_firmware -
mitsubishielectric fx3g-24mt/es-a_firmware -
mitsubishielectric fx5u-32mt/dss_firmware -
mitsubishielectric fx3ge-24mt/es_firmware -
mitsubishielectric fx3s-30mt/ess-2ad_firmware -
mitsubishielectric fx3s-14mt/dss_firmware -
mitsubishielectric fx3u-64mt/es_firmware -
mitsubishielectric fx3u-128mr/es-a_firmware -
mitsubishielectric fx3sa-14mr-cm_firmware -
mitsubishielectric fx5s-80mt/ess_firmware -
mitsubishielectric fx3uc-16mt/dss_firmware -
mitsubishielectric fx3u-64mt/ds_firmware -
mitsubishielectric fx3g-40mt/ds_firmware -
mitsubishielectric fx3g-14mt/ess_firmware -
mitsubishielectric fx3u-48mt/es-a_firmware -
mitsubishielectric fx3uc-16mt/dss-p4_firmware -
mitsubishielectric fx3ga-24mt-cm_firmware -
mitsubishielectric fx3u-16mt/es_firmware -
mitsubishielectric fx3u-48mr/ds_firmware -
mitsubishielectric fx3g-14mr/ds_firmware -
mitsubishielectric fx3g-60mt/ds_firmware -
mitsubishielectric fx3g-60mr/es-a_firmware -
mitsubishielectric fx3u-80mr/es_firmware -
mitsubishielectric fx3u-16mr/ds_firmware -
mitsubishielectric fx3u-128mr/ds_firmware -
mitsubishielectric fx3s-20mt/ds_firmware -
mitsubishielectric fx3s-14mt/ess_firmware -
mitsubishielectric fx3s-14mt/ds_firmware -
mitsubishielectric fx3g-14mr/es-a_firmware -
mitsubishielectric fx5uc-96mt/dss_firmware -
mitsubishielectric fx3uc-32mt-lt-2_firmware -
mitsubishielectric fx3s-30mt/es_firmware -
mitsubishielectric fx5s-60mt/ess_firmware -
mitsubishielectric fx5u-32mt/ess_firmware -
mitsubishielectric fx3ge-40mt/ess_firmware -
mitsubishielectric fx3s-20mr/ds_firmware -
mitsubishielectric fx3sa-10mr-cm_firmware -
mitsubishielectric fx3uc-64mt/d_firmware -
mitsubishielectric fx3g-24mt/dss_firmware -
mitsubishielectric fx3ge-40mr/es_firmware -
mitsubishielectric fx3g-60mt/es_firmware -
mitsubishielectric fx3u-128mt/ds_firmware -
mitsubishielectric fx5u-80mr/es_firmware -
mitsubishielectric fx3gc-32mt/d_firmware -
mitsubishielectric fx3u-128mt/e_firmware -
mitsubishielectric fx3uc-64mt/dss_firmware -
mitsubishielectric fx3g-60mt/dss_firmware -
mitsubishielectric fx3u-32mt/es_firmware -
mitsubishielectric fx3u-128mr/es_firmware -
mitsubishielectric fx3s-30mr/es_firmware -
mitsubishielectric fx5uc-32mr/ds-ts_firmware -
mitsubishielectric fx3ge-24mt/ds_firmware -
mitsubishielectric fx5uj-24mt/dss_firmware -
mitsubishielectric fx5uj-40mr/es_firmware -
mitsubishielectric fx3g-60mt/es-a_firmware -
mitsubishielectric fx3ge-40mt/es_firmware -
mitsubishielectric fx3g-24mt/ess_firmware -
mitsubishielectric fx5uj-60mr/ds_firmware -
mitsubishielectric fx5uj-60mt/ds_firmware -
mitsubishielectric fx3u-16mt/dss_firmware -
mitsubishielectric fx5s-40mt/ess_firmware -
mitsubishielectric fx5s-40mr/es_firmware -
mitsubishielectric fx3s-10mt/es_firmware -
mitsubishielectric fx3u-32mt/dss_firmware -
mitsubishielectric fx5uj-40mr/es-a_firmware -
mitsubishielectric fx3sa-14mt-cm_firmware -
mitsubishielectric fx3g-40mt/ess_firmware -
mitsubishielectric fx3uc-96mt/d_firmware -
mitsubishielectric fx5u-32mr/ds_firmware -
mitsubishielectric fx3u-48mt/ds_firmware -
mitsubishielectric fx5uj-24mt/ess_firmware -
mitsubishielectric fx3g-14mt/es_firmware -
mitsubishielectric fx3u-16mt/ess_firmware -
mitsubishielectric fx3u-80mr/ds_firmware -
mitsubishielectric fx5u-32mr/es_firmware -
mitsubishielectric fx3u-64mt/dss_firmware -
mitsubishielectric fx3u-80mr/es-a_firmware -
mitsubishielectric fx5uj-60mt/dss_firmware -
mitsubishielectric fx3g-24mt/ds_firmware -
mitsubishielectric fx3uc-32mt/dss_firmware -
mitsubishielectric fx5uc-32mt/dss_firmware -
mitsubishielectric fx3sa-20mt-cm_firmware -
mitsubishielectric fx5uj-40mt/dss_firmware -
mitsubishielectric fx3s-14mr/es_firmware -
mitsubishielectric fx5s-30mt/ess_firmware -
mitsubishielectric fx3g-14mt/dss_firmware -
mitsubishielectric fx3ge-24mr/ds_firmware -
mitsubishielectric fx3s-30mt/es-2ad_firmware -
mitsubishielectric fx3s-20mt/ess_firmware -
mitsubishielectric fx5u-80mt/dss_firmware -
mitsubishielectric fx5s-80mt/es_firmware -
mitsubishielectric fx3u-32mr/es-a_firmware -
mitsubishielectric fx3uc-16mt/d_firmware -
mitsubishielectric fx5u-64mr/ds_firmware -
mitsubishielectric fx5uj-60mt/es_firmware -
mitsubishielectric fx3g-24mt/es_firmware -
mitsubishielectric fx5uj-40mt/ess_firmware -
mitsubishielectric fx5s-80mr/es_firmware -
mitsubishielectric fx3u-32mt/ess_firmware -
mitsubishielectric fx5u-80mt/ds_firmware -
mitsubishielectric fx5uj-24mt/es_firmware -
mitsubishielectric fx5uc-64mt/dss_firmware -
mitsubishielectric fx3u-32mr/es_firmware -
mitsubishielectric fx3s-20mt/dss_firmware -
mitsubishielectric fx3uc-16mr/ds-t_firmware -
mitsubishielectric fx3u-32ms/es_firmware -
mitsubishielectric fx3ga-24mr-cm_firmware -
mitsubishielectric fx3u-16mt/ds_firmware -
mitsubishielectric fx3uc-16mr/d-t_firmware -
mitsubishielectric fx3s-30mr/es-2ad_firmware -
mitsubishielectric fx5uj-24mr/es_firmware -
mitsubishielectric fx5u-80mt/ess_firmware -
mitsubishielectric fx3u-80mt/ds_firmware -
mitsubishielectric fx3g-60mr/es_firmware -
mitsubishielectric fx5u-80mr/ds_firmware -
mitsubishielectric fx3u-80mt/dss_firmware -
mitsubishielectric fx3g-24mr/es_firmware -
mitsubishielectric fx3u-64mr/es_firmware -
CVE-2023-51776

Improper privilege management in Jungo WinDriver before 12.1.0 allows local attackers to escalate privileges and execute arbitrary code.

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2023-51777

Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.1.0 allows local attackers to cause a Windows blue screen error.

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2023-51778

Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.1.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2023-5247

Malicious Code Execution Vulnerability due to External Control of File Name or Path in multiple Mitsubishi Electric FA Engineering Software Products allows a malicious attacker to execute a malicious code by having legitimate users open a specially crafted project file, which could result in information disclosure, tampering and deletion, or a denial-of-service (DoS) condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
mitsubishielectric motion_control_setting *
mitsubishielectric melsoft_iq_appportal *
mitsubishielectric gx_works3 *
mitsubishielectric melsoft_navigator *
CVE-2023-5274

Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to cause a denial-of-service (DoS) condition on the function by sending specially crafted packets. However, the attacker would need to send the packets from within the same personal computer where the function is running.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 2.5 LOW CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L 1.0 1.4
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.0 3.6

Products Affected

Vendor Product Version
mitsubishielectric gx_works2 *
CVE-2023-5275

Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to cause a denial-of-service (DoS) condition on the function by sending specially crafted packets. However, the attacker would need to send the packets from within the same personal computer where the function is running.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.0 3.6
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 2.5 LOW CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L 1.0 1.4

Products Affected

Vendor Product Version
mitsubishielectric gx_works2 *
CVE-2023-6374

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC WS Series WS0-GETH00200 all serial numbers allows a remote unauthenticated attacker to bypass authentication by capture-replay attack and illegally login to the affected module. As a result, the remote attacker who has logged in illegally may be able to disclose or tamper with the programs and parameters in the modules.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N 2.2 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
mitsubishielectric melsec_ws0-geth00200_firmware -
CVE-2023-6815

Incorrect Privilege Assignment vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series Safety CPU R08/16/32/120SFCPU all versions and MELSEC iQ-R Series SIL2 Process CPU R08/16/32/120PSFCPU all versions allows a remote authenticated attacker who has logged into the product as a non-administrator user to disclose the credentials (user ID and password) of a user with a lower access level than the attacker by sending a specially crafted packet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

Products Affected

Vendor Product Version
mitsubishielectric r120sfcpu_firmware *
mitsubishielectric r08psfcpu_firmware *
mitsubishielectric r16psfcpu_firmware *
mitsubishielectric r32sfcpu_firmware *
mitsubishielectric r120psfcpu_firmware *
mitsubishielectric r08sfcpu_firmware *
mitsubishielectric r16sfcpu_firmware *
mitsubishielectric r32psfcpu_firmware *
CVE-2023-6942

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1(GOT1000) versions 1.325P and prior, GT Designer3 Version1(GOT2000) versions 1.320J and prior, GX Works2 versions 1.11M to 1.626C, GX Works3 versions 1.106L and prior, MELSOFT Navigator versions 1.04E to 2.102G, MT Works2 versions 1.190Y and prior, MX Component versions 4.00A to 5.007H and MX OPC Server DA/UA all versions allows a remote unauthenticated attacker to bypass authentication by sending specially crafted packets and connect to the products illegally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
mitsubishielectric gx_works2 *
mitsubishielectric got1000 *
mitsubishielectric mc_works64 *
mitsubishielectric got2000 *
mitsubishielectric fr_configurator2 *
mitsubishielectric mt_works2 *
mitsubishielectric mx_component *
mitsubishielectric ezsocket *
mitsubishielectric gx_works3 *
mitsubishielectric melsoft_navigator *
CVE-2023-6943

Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1(GOT1000) versions 1.325P and prior, GT Designer3 Version1(GOT2000) versions 1.320J and prior, GX Works2 versions 1.11M to 1.626C, GX Works3 versions 1.106L and prior, MELSOFT Navigator versions 1.04E to 2.102G, MT Works2 versions 1.190Y and prior, MX Component versions 4.00A to 5.007H and MX OPC Server DA/UA all versions allows a remote unauthenticated attacker to execute a malicious code by RPC with a path to a malicious library while connected to the products.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
mitsubishielectric gx_works2 *
mitsubishielectric got1000 *
mitsubishielectric mc_works64 *
mitsubishielectric got2000 *
mitsubishielectric fr_configurator2 *
mitsubishielectric mt_works2 *
mitsubishielectric mx_component *
mitsubishielectric ezsocket *
mitsubishielectric gx_works3 *
mitsubishielectric melsoft_navigator *
CVE-2024-22102

Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to cause a Windows blue screen error.

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2024-22103

Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2024-22104

Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2024-22105

Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to cause a Windows blue screen error.

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2024-22106

Improper privilege management in Jungo WinDriver before 12.5.1 allows local attackers to escalate privileges, execute arbitrary code, or cause a Denial of Service (DoS).

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2024-25086

Improper privilege management in Jungo WinDriver before 12.2.0 allows local attackers to escalate privileges and execute arbitrary code.

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2024-25087

Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.7.0 allows local attackers to cause a Windows blue screen error.

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2024-25088

Improper privilege management in Jungo WinDriver before 12.5.1 allows local attackers to escalate privileges and execute arbitrary code.

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2024-26314

Improper privilege management in Jungo WinDriver 6.0.0 through 16.1.0 allows local attackers to escalate privileges and execute arbitrary code.

Products Affected

Vendor Product Version
mitsubishielectric sw1dnd-emsdk-b_firmware *
mitsubishielectric cw_configurator *
mitsubishielectric numerical_control_device_communication *
mitsubishielectric genesis64 *
mitsubishielectric px_developer/monitor_tool *
mitsubishielectric mx_component *
mitsubishielectric rt_toolbox3 *
mitsubishielectric sw1dnc-qsccf-b_firmware *
mitsubishielectric mx_opc_server_da/ua *
mitsubishielectric sw1dnc-ccbd2-b_firmware *
mitsubishielectric fr_configurator_sw3 *
mitsubishielectric sw1dnc-mnetg-b_firmware *
mitsubishielectric fr_configurator2 *
mitsubishielectric gx_developer *
mitsubishielectric cpu_module_logging_configuration_tool *
mitsubishielectric gt_got1000 *
mitsubishielectric mr_configurator *
mitsubishielectric data_transfer *
mitsubishielectric gx_works3 *
mitsubishielectric gx_works2 *
mitsubishielectric data_transfer_classic *
mitsubishielectric gt_softgot1000 *
mitsubishielectric mr_configurator2 *
mitsubishielectric mrzjw3-mc2-utl_firmware *
mitsubishielectric gt_got2000 *
mitsubishielectric sw1dnc-ccief-j_firmware *
mitsubishielectric rt_visualbox *
mitsubishielectric sw0dnc-mneth-b_firmware *
mitsubishielectric iq_works *
mitsubishielectric ezsocket *
jungo windriver *
mitsubishielectric mi_configurator *
mitsubishielectric sw1dnc-ccief-b_firmware *
mitsubishielectric gt_softgot2000 *
mitsubishielectric gx_logviewer *
CVE-2024-7587

Incorrect Default Permissions vulnerability in GenBroker32, which is included in the installers for Mitsubishi Electric GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric Iconics Digital Solutions ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric GENESIS32 versions 9.70.300.23 and prior, Mitsubishi Electric Iconics Digital Solutions GENESIS32 versions 9.70.300.23 and prior, and Mitsubishi Electric MC Works64 all versions allows a local authenticated attacker to disclose or tamper with confidential information and data contained in the products, or cause a denial of service (DoS) condition on the products, by accessing a folder with incorrect permissions, when GenBroker32 is installed on the same PC as GENESIS64, ICONICS Suite, MC Works64, or GENESIS32.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
mitsubishielectric mc_works64 -
iconics genesis64 *