Lucene search
K

13 matches found

Cvelist
Cvelist
added 2026/04/08 1:15 p.m.18 views

CVE-2025-14815 Information Disclosure, Tampering, and Denial-of-Service Vulnerabilities in GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric MobileHMI versions 10.97.3 and prior, Mitsubishi Electric Hyper Historian versions 10.97.3 and...

9.3CVSS0.00101EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.10 views

Mitsubishi Electric多款产品 安全漏洞

Mitsubishi Electric GENESIS64 and other products are developed by Mitsubishi Electric Corporation of Japan. Mitsubishi Electric GENESIS64 is a SCADA suite. Mitsubishi Electric ICONICS Suite is a monitoring system for digital factories and intelligent buildings. Mitsubishi Electric MobileHMI is a...

9.3CVSS5.9AI score0.00101EPSS
Exploits0References3
NVD
NVD
added 2025/12/19 1:16 a.m.7 views

CVE-2025-11774

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in the software keyboard function hereinafter referred to as "keypad function" of Mitsubishi Electric GENESIS64 versions 10.97.2 CFR3 and prior, Mitsubishi Electric Iconics Digital Solutions...

8.2CVSS0.00492EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/08/12 12:0 a.m.12 views

The vulnerability of the GENESIS64 SCADA system’s software packages for monitoring and data collection, specifically the MC Works64 package, arises from errors in processing .LNK files. This vulnerability allows a intruder to write arbitrary files and trigger service failures.

The vulnerability of the GENESIS64 SCADA system’s software packages for monitoring and data collection via the MC Works64 interface is related to errors in processing files with the .LNK extension. Exploiting this vulnerability allows an intruder to write arbitrary files and cause service failure...

5.9CVSS5.6AI score0.00185EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/23 12:0 a.m.7 views

The vulnerability of the WorkBench64 module in the GENESIS64 SCADA system allows a intruder to disclose protected information.

The vulnerability of the WorkBench64 module in the GENESIS64 SCADA system is related to improper security checks for standard elements. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose protected information...

5.3CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/23 12:0 a.m.7 views

The vulnerability of the WorkBench64 module in the GENESIS64 SCADA system allows a intruder to gain unauthorized access to project files.

The vulnerability of the WorkBench64 module in the GENESIS64 SCADA system is related to errors in the implementation of security checks for standard elements. Exploiting this vulnerability could allow an intruder, operating remotely, to gain unauthorized access to project files...

6.5CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/07/23 12:0 a.m.17 views

The vulnerability of the GraphWorX64 module in the GENESIS64 SCADA system allows a intruder to load arbitrary files or execute arbitrary code.

The vulnerability of the GraphWorX64 module in the GENESIS64 SCADA system is related to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a malicious actor to download arbitrary files or execute arbitrary code remotely...

6.5CVSS5.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/31 12:0 a.m.8 views

The vulnerability of the software tools for monitoring and managing the ICONICS Suite, GENESIS64, Hyper Historian, Energy AnalytiX, and MobileHMI processes lies in the fact that passwords are stored in an unencrypted form, allowing attackers to compromise the protected information.

The vulnerability of the software tools for monitoring and managing the ICONICS Suite, GENESIS64, Hyper Historian, Energy AnalytiX, and MobileHMI processes lies in the storage of passwords in an unencrypted form. Exploiting this vulnerability can allow a perpetrator to disclose the protected...

7.7CVSS5.9AI score0.00186EPSS
Exploits0References3Affected Software5
BDU FSTEC
BDU FSTEC
added 2022/08/02 12:0 a.m.6 views

The vulnerabilities of the monitoring and process management software components in the ICONICS Suite, GENESIS64, Hyper Historian, Energy AnalytiX, and MobileHMI systems stem from the use of an incomplete blacklist. This allows attackers to bypass authentication procedures or gain unauthorized access to devices.

The vulnerabilities of the monitoring and process management software suites ICONICS Suite, GENESIS64, Hyper Historian, Energy AnalytiX, and MobileHMI are related to the use of an incomplete blacklist. Exploiting these vulnerabilities allows a malicious actor to bypass authentication procedures o...

10CVSS7.8AI score0.02884EPSS
Exploits0References3Affected Software5
OSV
OSV
added 2022/07/20 5:15 p.m.5 views

CVE-2022-33315

Deserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric ICONICS Suite versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions...

7.8CVSS6AI score0.00325EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/07/20 12:0 a.m.7 views

Mitsubishi Electric GENESIS64和Mitsubishi Electric ICONICS Suite 路径遍历漏洞

ICONICS GENESIS64 is a suite of advanced HMI SCADA solutions designed for Microsoft operating systems from ICONICS, Inc. A path traversal vulnerability exists in ICONICS GENESIS64 versions 10.97 and 10.97.1, which allows a remote, unauthenticated attacker to access arbitrary files in the GENESIS6...

7.5CVSS5.8AI score0.013EPSS
Exploits0References6
OSV
OSV
added 2022/01/21 7:15 p.m.4 views

CVE-2022-23129

Plaintext Storage of a Password vulnerability in Mitsubishi Electric MC Works64 versions 4.04E 10.95.210.01 and prior and ICONICS GENESIS64 versions 10.90 to 10.97 allows a local authenticated attacker to gain authentication information and to access the database illegally. This is because when...

5.5CVSS6.1AI score0.00186EPSS
Exploits0References3
OSV
OSV
added 2022/01/21 7:15 p.m.4 views

CVE-2022-23130

Buffer Over-read vulnerability in Mitsubishi Electric MC Works64 versions 4.00A to 4.04E, Mitsubishi Electric GENESIS64 versions 10.97 and prior, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97 and prior, Mitsubishi Electric ICONICS Suite versions 10.97 and prior, Mitsubish...

5.5CVSS6.2AI score0.01004EPSS
Exploits0References3
Rows per page
Query Builder