13 matches found
CVE-2025-14815 Information Disclosure, Tampering, and Denial-of-Service Vulnerabilities in GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64
Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric MobileHMI versions 10.97.3 and prior, Mitsubishi Electric Hyper Historian versions 10.97.3 and...
Mitsubishi Electric多款产品 安全漏洞
Mitsubishi Electric GENESIS64 and other products are developed by Mitsubishi Electric Corporation of Japan. Mitsubishi Electric GENESIS64 is a SCADA suite. Mitsubishi Electric ICONICS Suite is a monitoring system for digital factories and intelligent buildings. Mitsubishi Electric MobileHMI is a...
CVE-2025-11774
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in the software keyboard function hereinafter referred to as "keypad function" of Mitsubishi Electric GENESIS64 versions 10.97.2 CFR3 and prior, Mitsubishi Electric Iconics Digital Solutions...
The vulnerability of the GENESIS64 SCADA system’s software packages for monitoring and data collection, specifically the MC Works64 package, arises from errors in processing .LNK files. This vulnerability allows a intruder to write arbitrary files and trigger service failures.
The vulnerability of the GENESIS64 SCADA system’s software packages for monitoring and data collection via the MC Works64 interface is related to errors in processing files with the .LNK extension. Exploiting this vulnerability allows an intruder to write arbitrary files and cause service failure...
The vulnerability of the WorkBench64 module in the GENESIS64 SCADA system allows a intruder to disclose protected information.
The vulnerability of the WorkBench64 module in the GENESIS64 SCADA system is related to improper security checks for standard elements. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose protected information...
The vulnerability of the WorkBench64 module in the GENESIS64 SCADA system allows a intruder to gain unauthorized access to project files.
The vulnerability of the WorkBench64 module in the GENESIS64 SCADA system is related to errors in the implementation of security checks for standard elements. Exploiting this vulnerability could allow an intruder, operating remotely, to gain unauthorized access to project files...
The vulnerability of the GraphWorX64 module in the GENESIS64 SCADA system allows a intruder to load arbitrary files or execute arbitrary code.
The vulnerability of the GraphWorX64 module in the GENESIS64 SCADA system is related to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a malicious actor to download arbitrary files or execute arbitrary code remotely...
The vulnerability of the software tools for monitoring and managing the ICONICS Suite, GENESIS64, Hyper Historian, Energy AnalytiX, and MobileHMI processes lies in the fact that passwords are stored in an unencrypted form, allowing attackers to compromise the protected information.
The vulnerability of the software tools for monitoring and managing the ICONICS Suite, GENESIS64, Hyper Historian, Energy AnalytiX, and MobileHMI processes lies in the storage of passwords in an unencrypted form. Exploiting this vulnerability can allow a perpetrator to disclose the protected...
The vulnerabilities of the monitoring and process management software components in the ICONICS Suite, GENESIS64, Hyper Historian, Energy AnalytiX, and MobileHMI systems stem from the use of an incomplete blacklist. This allows attackers to bypass authentication procedures or gain unauthorized access to devices.
The vulnerabilities of the monitoring and process management software suites ICONICS Suite, GENESIS64, Hyper Historian, Energy AnalytiX, and MobileHMI are related to the use of an incomplete blacklist. Exploiting these vulnerabilities allows a malicious actor to bypass authentication procedures o...
CVE-2022-33315
Deserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions...
Mitsubishi Electric GENESIS64和Mitsubishi Electric ICONICS Suite 路径遍历漏洞
ICONICS GENESIS64 is a suite of advanced HMI SCADA solutions designed for Microsoft operating systems from ICONICS, Inc. A path traversal vulnerability exists in ICONICS GENESIS64 versions 10.97 and 10.97.1, which allows a remote, unauthenticated attacker to access arbitrary files in the GENESIS6...
CVE-2022-23129
Plaintext Storage of a Password vulnerability in Mitsubishi Electric MC Works64 versions 4.04E 10.95.210.01 and prior and ICONICS GENESIS64 versions 10.90 to 10.97 allows a local authenticated attacker to gain authentication information and to access the database illegally. This is because when...
CVE-2022-23130
Buffer Over-read vulnerability in Mitsubishi Electric MC Works64 versions 4.00A to 4.04E, Mitsubishi Electric GENESIS64 versions 10.97 and prior, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 and prior, Mitsubishi Electric ICONICS Suite versions 10.97 and prior, Mitsubish...