CVE-2022-40266

🗓️ 24 Nov 2022 08:20:14Reported by MitsubishiType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 70 Views

Improper Input Validation vulnerability in Mitsubishi Electric GOT2000 Series GT27, GT25, and GT23 models FTP servers allows remote authenticated attacker to cause Denial of Service by sending specially crafted command

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2022-40266	24 Nov 202212:31	–	circl
CNNVD	Mitsubishi Electric GOT2000 输入验证错误漏洞	24 Nov 202200:00	–	cnnvd
Cvelist	CVE-2022-40266 Denial-of-Service (DoS) Vulnerability in FTP Server Function on GOT2000 Series	24 Nov 202208:20	–	cvelist
EUVD	EUVD-2022-43564	3 Oct 202520:07	–	euvd
ICS	Mitsubishi Electric GOT2000	29 Nov 202200:00	–	ics
NVD	CVE-2022-40266	24 Nov 202209:15	–	nvd
OSV	CVE-2022-40266	24 Nov 202209:15	–	osv
Prion	Input validation	24 Nov 202209:15	–	prion
Positive Technologies	PT-2022-25311 · Mitsubishi · Got2000 Series Gt23 +2	24 Nov 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-40266	22 May 202523:38	–	redhatcve

NVD

Node

mitsubishielectric got2000_gt27_firmwareRange≤01.39.000

AND

mitsubishielectric got2000_gt27Match-

Node

mitsubishielectric got2000_gt25_firmwareRange≤01.39.000

AND

mitsubishielectric got2000_gt25Match-

Node

mitsubishielectric got2000_gt23_firmwareRange≤01.39.000

AND

mitsubishielectric got2000_gt23Match-

[
  {
    "product": "GOT2000 Series GT27 model",
    "vendor": "Mitsubishi Electric",
    "versions": [
      {
        "status": "affected",
        "version": "FTP server versions 01.39.000 and prior"
      }
    ]
  },
  {
    "product": "GOT2000 Series GT25 model",
    "vendor": "Mitsubishi Electric",
    "versions": [
      {
        "status": "affected",
        "version": "FTP server versions 01.39.000 and prior"
      }
    ]
  },
  {
    "product": "GOT2000 Series GT23 model",
    "vendor": "Mitsubishi Electric",
    "versions": [
      {
        "status": "affected",
        "version": "FTP server versions 01.39.000 and prior"
      }
    ]
  }
]