Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2020-5602

🗓️ 30 Jun 2020 10:20:45Reported by jpcertType 
cve
 cve🔗 web.nvd.nist.gov👁 61 Views

Mitsubishi Electoric FA Engineering Software vulnerable to XXE attacks

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Cvelist		CVE-2020-5602
30 Jun 202010:20
cvelist
EUVD		EUVD-2020-26763
7 Oct 202500:30
euvd
ICS		Mitsubishi Electric Factory Automation Engineering Software Products
30 Jun 202000:00
ics
NVD		CVE-2020-5602
30 Jun 202011:15
nvd
Prion		Xxe
30 Jun 202011:15
prion
RedhatCVE		CVE-2020-5602
22 May 202517:42
redhatcve
Tenable Nessus		Mitsubishi (CVE-2020-5602) (deprecated)
7 Feb 202200:00
nessus
NVD
Node
mitsubishielectriccpu_module_logging_configuration_toolRange1.94y
OR
mitsubishielectriccw_configuratorRange1.010l
OR
mitsubishielectricem_configuratorRange1.010l
OR
mitsubishielectricgt_designer3Range1.221f
OR
mitsubishielectricgx_logviewerRange1.100e
OR
mitsubishielectricgx_works2Range1.590q
OR
mitsubishielectricgx_works3Range1.060n
OR
mitsubishielectricm_commdtm-hartRange1.01b
OR
mitsubishielectricm_commdtm-io-linkRange1.03d
OR
mitsubishielectricmelfa-worksRange4.4
OR
mitsubishielectricmelsec-l_flexible_high-speed_i/o_control_module_configuration_toolRange1.005f
OR
mitsubishielectricmelsoft_fielddeviceconfiguratorRange1.04e
OR
mitsubishielectricmelsoft_iq_appportalRange1.14q
OR
mitsubishielectricmelsoft_navigatorRange2.62q
OR
mitsubishielectricmi_configuratorRange1.004e
OR
mitsubishielectricmotion_control_settingRange1.006g
OR
mitsubishielectricmr_configurator2Range1.100e
OR
mitsubishielectricmt_works2Range1.160s
OR
mitsubishielectricrt_toolbox2Range3.73b
OR
mitsubishielectricrt_toolbox3Range1.60n
[
  {
    "product": "Mitsubishi Electoric FA Engineering Software",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier, EM Software Development Kit (EM Configurator) Ver. 1.010L and earlier, GT Designer3 (GOT2000) Ver. 1.221F and earlier, GX LogViewer Ver. 1.96A and earlier, GX Works2 Ver. 1.586L and earlier, GX Works3 Ver. 1.058L and earlier, M_CommDTM-HART Ver. 1.00A, M_CommDTM-IO-Link Ver. 1.02C and earlier, MELFA-Works Ver. 4.3 and earlier, MELSEC-L Flexible High-Speed I/O Control Module Configuration Tool Ver.1.004E and earlier, MELSOFT FieldDeviceConfigurator Ver. 1.03D and earlier, MELSOFT iQ AppPortal Ver. 1.11M and earlier, MELSOFT Navigator Ver. 2.58L and earlier, MI Configurator Ver. 1.003D and earlier, Motion Control Setting Ver. 1.005F and earlier, MR Configurator2 Ver. 1.72A and earlier, MT Works2 Ver. 1.156N and earlier, RT ToolBox2 Ver. 3.72A and earlier, and RT ToolBox3 Ver. 1.50C and earlier"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 05:34Current
7.2High risk
Vulners AI Score7.2
CVSS 25
CVSS 3.17.5
EPSS0.00408
CWE-611
mitsubishi electoricfa engineering softwarexxe attackscve-2020-5602security vulnerabilitynvd
61