2020-10-05
|
CVE-2020-16226
|
Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands.
|
Conveyor_tracking_application_apr\-Ntr12fh, Conveyor_tracking_application_apr\-Ntr20fh\(N\=1\,2\), Conveyor_tracking_application_apr\-Ntr3fh, Conveyor_tracking_application_apr\-Ntr6fh, Fr\-A820\-E_firmware, Fr\-A840\-E_firmware, Fr\-A842\-E_firmware, Fr\-A860\-E_firmware, Fr\-A862\-E_firmware, Fr\-A8ncge_firmware, Fr\-E800\-Epa_firmware, Fr\-E800\-Epb_firmware, Fr\-F820\-E_firmware, Fr\-F840\-E_firmware, Fr\-F842\-E_firmware, Fr\-F860\-E_firmware, Fr\-F862\-E_firmware, Fx3g\-14mr\/ds_firmware, Fx3g\-14mr\/es_firmware, Fx3g\-14mt\/dss_firmware, Fx3g\-14mt\/ess_firmware, Fx3g\-24mr\/ds_firmware, Fx3g\-24mr\/es_firmware, Fx3g\-24mt\/dss_firmware, Fx3g\-24mt\/ess_firmware, Fx3g\-32_mt\/dss_firmware, Fx3g\-40mr\/ds_firmware, Fx3g\-40mr\/es_firmware, Fx3g\-40mt\/dss_firmware, Fx3g\-40mt\/ess_firmware, Fx3g\-60mr\/ds_firmware, Fx3g\-60mr\/es_firmware, Fx3g\-60mt\/dss_firmware, Fx3g\-60mt\/ess_firmware, Fx3u\-Enet\-L_firmware, Fx3u\-Enet\-P502_firmware, Fx3u\-Enet_firmware, Fx5\-Cclgn\-Ms_firmware, Fx5\-Enet\-Adp_firmware, Fx5\-Enet\/ip_firmware, Fx5\-Enet_firmware, Fx5uc\-32mr\/ds\-Ts_firmware, Fx5uc\-32mt\/d_firmware, Fx5uc\-32mt\/ds\-Ts_firmware, Fx5uc\-32mt\/dss\-Ts_firmware, Fx5uc\-32mt\/dss_firmware, Fx5uj\-24mr\/es_firmware, Fx5uj\-24mt\/es_firmware, Fx5uj\-24mt\/ess_firmware, Fx5uj\-40mr\/es_firmware, Fx5uj\-40mt\/es_firmware, Fx5uj\-40mt\/ess_firmware, Fx5uj\-60mr\/es_firmware, Fx5uj\-60mt\/es_firmware, Fx5uj\-60mt\/ess_firmware, Got1000_series_gt14_firmware, Got2000_series_gt21_firmware, Got_simple_series_gs21_firmware, Gt25\-J71gn13\-T2_firmware, Iu1\-1m20\-D_firmware, L26cpu\-\(P\)bt_firmware, Le7\-40gu\-L_firmware, Lj71e71\-100_firmware, Lncpu\(\-P\)\(N\=02\/06\/26\)_firmware, Mr\-J4\-Tm_firmware, Mr\-Je\-C_firmware, Nz2ft\-Eip_firmware, Nz2ft\-Mt_firmware, Nz2gacp620\-300_firmware, Nz2gacp620\-60_firmware, Q03udecpu_firmware, Q06ccpu\-V_firmware, Q24dhccpu\-V_firmware, Q24dhccpu\-Vg_firmware, Qj71e71\-100_firmware, Qj71mes96_firmware, Qj71mt91_firmware, Qj71ws96_firmware, Qnudehcpu\(N\=04\/06\/10\/13\/20\/26\/50\/100\)_firmware, Qnudpvcpu\(N\=04\/06\/13\/2\)_firmware, Qnudvcpu\(N\=03\/04\/06\/13\/26\)_firmware, R12ccpu\-V_firmware, Rd55up06\-V_firmware, Rd55up12\-V_firmware, Rd78ghv_firmware, Rd78ghw_firmware, Rd78gn\(N\=4\,8\,16\,32\,64\)_firmware, Rj71en71_firmware, Rj71gn11\-T2_firmware, Rncpu\(N\=00\/01\/02\)t_firmware, Rncpu\(N\=04\/08\/16\/32\/120\)_firmware, Rnencpu\(N\=04\/08\/16\/32\/120\)_firmware, Rnpcpu\(N\=08\/16\/32\/120\)_firmware, Rnpsfcpu\(N\=08\/16\/32\/120\)_firmware, Rnsfcpu_\(N\=08\/16\/32\/120\)_firmware
|
9.8
|
|
|
2021-07-22
|
CVE-2021-20596
|
NULL Pointer Dereference in MELSEC-F Series FX3U-ENET firmware version 1.14 and prior, FX3U-ENET-L firmware version 1.14 and prior and FX3U-ENET-P502 firmware version 1.14 and prior allows a remote unauthenticated attacker to cause a DoS condition in communication by sending specially crafted packets. Control by MELSEC-F series PLC is not affected and system reset is required for recovery.
|
Fx3u\-Enet\-L_firmware, Fx3u\-Enet\-P502_firmware, Fx3u\-Enet_firmware
|
7.5
|
|
|
2022-01-14
|
CVE-2021-20613
|
Improper initialization vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.16 and prior, FX3U-ENET-L Firmware version 1.16 and prior and FX3U-ENET-P502 Firmware version 1.16 and prior allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition in communication function of the product by sending specially crafted packets. Control by MELSEC-F series PLC is not affected by this vulnerability, but system reset is required for recovery.
|
Fx3u\-Enet\-L_firmware, Fx3u\-Enet\-P502_firmware, Fx3u\-Enet_firmware
|
7.5
|
|
|
2022-01-14
|
CVE-2021-20612
|
Lack of administrator control over security vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.14 and prior, FX3U-ENET-L Firmware version 1.14 and prior and FX3U-ENET-P502 Firmware version 1.14 and prior allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition in communication function of the product or other unspecified effects by sending specially crafted packets to an unnecessary opening of TCP port. Control by MELSEC-F series PLC is not affected by...
|
Fx3u\-Enet\-L_firmware, Fx3u\-Enet\-P502_firmware, Fx3u\-Enet_firmware
|
7.5
|
|
|
2023-10-13
|
CVE-2023-4562
|
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending illegitimate messages.
|
Fx3g\-14_mr\/ds_firmware, Fx3g\-14_mr\/es_firmware, Fx3g\-14_mt\/ds_firmware, Fx3g\-14_mt\/dss_firmware, Fx3g\-14_mt\/es_firmware, Fx3g\-14_mt\/ess_firmware, Fx3g\-14mr\/ds_firmware, Fx3g\-14mr\/es\-A_firmware, Fx3g\-14mr\/es_firmware, Fx3g\-14mt\/ds_firmware, Fx3g\-14mt\/dss_firmware, Fx3g\-14mt\/es\-A_firmware, Fx3g\-14mt\/es_firmware, Fx3g\-14mt\/ess_firmware, Fx3g\-232adp\(\-Mb\)_firmware, Fx3g\-24_mr\/ds_firmware, Fx3g\-24_mr\/es_firmware, Fx3g\-24_mt\/ds_firmware, Fx3g\-24_mt\/dss_firmware, Fx3g\-24_mt\/es_firmware, Fx3g\-24_mt\/ess_firmware, Fx3g\-24mr\/ds_firmware, Fx3g\-24mr\/es\-A_firmware, Fx3g\-24mr\/es_firmware, Fx3g\-24mt\/ds_firmware, Fx3g\-24mt\/dss_firmware, Fx3g\-24mt\/es\-A_firmware, Fx3g\-24mt\/es_firmware, Fx3g\-24mt\/ess_firmware, Fx3g\-32_mt\/dss_firmware, Fx3g\-3a\-Adp_firmware, Fx3g\-40_mr\/ds_firmware, Fx3g\-40_mr\/es_firmware, Fx3g\-40_mt\/ds_firmware, Fx3g\-40_mt\/dss_firmware, Fx3g\-40_mt\/es_firmware, Fx3g\-40_mt\/ess_firmware, Fx3g\-40mr\/ds_firmware, Fx3g\-40mr\/es\-A_firmware, Fx3g\-40mr\/es_firmware, Fx3g\-40mt\/ds_firmware, Fx3g\-40mt\/dss_firmware, Fx3g\-40mt\/es\-A_firmware, Fx3g\-40mt\/es_firmware, Fx3g\-40mt\/ess_firmware, Fx3g\-485adp\(\-Mb\)_firmware, Fx3g\-4ad\-Adp_firmware, Fx3g\-4ad\-Pt\-Adp_firmware, Fx3g\-4ad\-Ptw\-Adp_firmware, Fx3g\-4ad\-Tc\-Adp_firmware, Fx3g\-4da\-Adp_firmware, Fx3g\-4da\-Pnk\-Adp_firmware, Fx3g\-60_mr\/ds_firmware, Fx3g\-60_mr\/es_firmware, Fx3g\-60_mt\/ds_firmware, Fx3g\-60_mt\/dss_firmware, Fx3g\-60_mt\/es_firmware, Fx3g\-60_mt\/ess_firmware, Fx3g\-60mr\/ds_firmware, Fx3g\-60mr\/es\-A_firmware, Fx3g\-60mr\/es_firmware, Fx3g\-60mt\/ds_firmware, Fx3g\-60mt\/dss_firmware, Fx3g\-60mt\/es\-A_firmware, Fx3g\-60mt\/es_firmware, Fx3g\-60mt\/ess_firmware, Fx3g\-Cnv\-Adp_firmware, Fx3ga\-24mr\-Cm_firmware, Fx3ga\-24mt\-Cm_firmware, Fx3ga\-40mr\-Cm_firmware, Fx3ga\-40mt\-Cm_firmware, Fx3ga\-60mr\-Cm_firmware, Fx3ga\-60mt\-Cm_firmware, Fx3gc\-32mt\/d_firmware, Fx3gc\-32mt\/dss_firmware, Fx3gc_firmware, Fx3ge\-24mr\/ds_firmware, Fx3ge\-24mr\/es_firmware, Fx3ge\-24mt\/ds_firmware, Fx3ge\-24mt\/dss_firmware, Fx3ge\-24mt\/es_firmware, Fx3ge\-24mt\/ess_firmware, Fx3ge\-40mr\/ds_firmware, Fx3ge\-40mr\/es_firmware, Fx3ge\-40mt\/ds_firmware, Fx3ge\-40mt\/dss_firmware, Fx3ge\-40mt\/es_firmware, Fx3ge\-40mt\/ess_firmware, Fx3s\-10mr\/ds_firmware, Fx3s\-10mr\/es_firmware, Fx3s\-10mt\/ds_firmware, Fx3s\-10mt\/dss_firmware, Fx3s\-10mt\/es_firmware, Fx3s\-10mt\/ess_firmware, Fx3s\-14mr\/ds_firmware, Fx3s\-14mr\/es_firmware, Fx3s\-14mt\/ds_firmware, Fx3s\-14mt\/dss_firmware, Fx3s\-14mt\/es_firmware, Fx3s\-14mt\/ess_firmware, Fx3s\-20mr\/ds_firmware, Fx3s\-20mr\/es_firmware, Fx3s\-20mt\/ds_firmware, Fx3s\-20mt\/dss_firmware, Fx3s\-20mt\/es_firmware, Fx3s\-20mt\/ess_firmware, Fx3s\-30mr\/ds_firmware, Fx3s\-30mr\/es\-2ad_firmware, Fx3s\-30mr\/es_firmware, Fx3s\-30mt\/ds_firmware, Fx3s\-30mt\/dss_firmware, Fx3s\-30mt\/es\-2ad_firmware, Fx3s\-30mt\/es_firmware, Fx3s\-30mt\/ess\-2ad_firmware, Fx3s\-30mt\/ess_firmware, Fx3sa\-10mr\-Cm_firmware, Fx3sa\-10mt\-Cm_firmware, Fx3sa\-14mr\-Cm_firmware, Fx3sa\-14mt\-Cm_firmware, Fx3sa\-20mr\-Cm_firmware, Fx3sa\-20mt\-Cm_firmware, Fx3sa\-30mr\-Cm_firmware, Fx3sa\-30mt\-Cm_firmware, Fx3u\-128mr\/es\-A_firmware, Fx3u\-128mr\/es_firmware, Fx3u\-128mt\/es\-A_firmware, Fx3u\-128mt\/es_firmware, Fx3u\-128mt\/ess_firmware, Fx3u\-16mr\/ds_firmware, Fx3u\-16mr\/es\-A_firmware, Fx3u\-16mr\/es_firmware, Fx3u\-16mt\/ds_firmware, Fx3u\-16mt\/dss_firmware, Fx3u\-16mt\/es\-A_firmware, Fx3u\-16mt\/es_firmware, Fx3u\-16mt\/ess_firmware, Fx3u\-32mr\/ds_firmware, Fx3u\-32mr\/es\-A_firmware, Fx3u\-32mr\/es_firmware, Fx3u\-32mr\/ua1_firmware, Fx3u\-32ms\/es_firmware, Fx3u\-32mt\/ds_firmware, Fx3u\-32mt\/dss_firmware, Fx3u\-32mt\/es\-A_firmware, Fx3u\-32mt\/es_firmware, Fx3u\-32mt\/ess_firmware, Fx3u\-48mr\/ds_firmware, Fx3u\-48mr\/es\-A_firmware, Fx3u\-48mr\/es_firmware, Fx3u\-48mt\/ds_firmware, Fx3u\-48mt\/dss_firmware, Fx3u\-48mt\/es\-A_firmware, Fx3u\-48mt\/es_firmware, Fx3u\-48mt\/ess_firmware, Fx3u\-64mr\/ds_firmware, Fx3u\-64mr\/es\-A_firmware, Fx3u\-64mr\/es_firmware, Fx3u\-64mr\/ua1_firmware, Fx3u\-64ms\/es_firmware, Fx3u\-64mt\/ds_firmware, Fx3u\-64mt\/dss_firmware, Fx3u\-64mt\/es\-A_firmware, Fx3u\-64mt\/es_firmware, Fx3u\-64mt\/ess_firmware, Fx3u\-80mr\/ds_firmware, Fx3u\-80mr\/es\-A_firmware, Fx3u\-80mr\/es_firmware, Fx3u\-80mt\/ds_firmware, Fx3u\-80mt\/dss_firmware, Fx3u\-80mt\/es\-A_firmware, Fx3u\-80mt\/es_firmware, Fx3u\-80mt\/ess_firmware, Fx3u\-Enet\-L_firmware, Fx3u\-Enet\-P502_firmware, Fx3u\-Enet_firmware, Fx3uc\-16mr\/d\-T_firmware, Fx3uc\-16mr\/ds\-T_firmware, Fx3uc\-16mt\/d\-P4_firmware, Fx3uc\-16mt\/d_firmware, Fx3uc\-16mt\/dss\-P4_firmware, Fx3uc\-16mt\/dss_firmware, Fx3uc\-32mt\-Lt\-2_firmware, Fx3uc\-32mt\-Lt_firmware, Fx3uc\-32mt\/d_firmware, Fx3uc\-32mt\/dss_firmware, Fx3uc\-64mt\/d_firmware, Fx3uc\-64mt\/dss_firmware, Fx3uc\-96mt\/d_firmware, Fx3uc\-96mt\/dss_firmware, Fx3uc_firmware
|
9.1
|
|
|