40 matches found
EUVD-2021-8014
Malicious code in bioql PyPI...
EUVD-2023-54417
Malicious code in bioql PyPI...
EUVD-2021-8030
Malicious code in bioql PyPI...
CVE-2023-4562
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending...
CVE-2021-20612
Lack of administrator control over security vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.14 and prior, FX3U-ENET-L Firmware version 1.14 and prior and FX3U-ENET-P502 Firmware version 1.14 and prior allows a remote unauthenticated attacker to cause a denial-of-service DoS conditio...
CVE-2021-20613
Improper initialization vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.16 and prior, FX3U-ENET-L Firmware version 1.16 and prior and FX3U-ENET-P502 Firmware version 1.16 and prior allows a remote unauthenticated attacker to cause a denial-of-service DoS condition in communication...
CVE-2021-20596
NULL Pointer Dereference in MELSEC-F Series FX3U-ENET firmware version 1.14 and prior, FX3U-ENET-L firmware version 1.14 and prior and FX3U-ENET-P502 firmware version 1.14 and prior allows a remote unauthenticated attacker to cause a DoS condition in communication by sending specially crafted...
CVE-2023-4699 Arbitrary Command Execution Vulnerability in Mitsubishi Electric proprietary protocol communication of multiple FA products
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELSEC iQ-L series, MELSEC Q series, MELSEC-L series, Mitsubishi Electric CNC M800V/M80V series,...
CVE-2023-4699
CVE-2023-4699 describes a Missing Authentication for Critical Function vulnerability affecting Mitsubishi Electric MELSEC-F/iQ-F/iQ-R/iQ-L/Q/L series and related CNC modules. A remote, unauthenticated attacker can send crafted packets to affected devices to execute arbitrary commands, potentially...
Mitsubishi Electric MELSEC iQ-F series and Mitsubishi Electric MELSEC-F Series Data Forgery Issue Vulnerability
The Mitsubishi Electric MELSEC iQ-F series and Mitsubishi Electric MELSEC-F Series are both products of Mitsubishi Electric Corporation Mitsubishi Electric, Japan. The Mitsubishi Electric MELSEC-F Series is a programmable logic controller, and the Mitsubishi Electric MELSEC-F Series is a basic...
Mitsubishi Electric MELSEC-F Series Authentication Error Vulnerability
Mitsubishi Electric MELSEC-F Series is a basic micro PLC with analog and communication function scalability for industrial control equipment from Mitsubishi Electric Mitsubishi Electric, Japan. An authentication error vulnerability exists in the Mitsubishi Electric MELSEC-F Series, which can be...
CVE-2023-4562
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending...
Authentication flaw
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending...
CVE-2023-4562 Information Disclosure, Information Tampering and Authentication Bypass Vulnerability in MELSEC-F Series main module
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending...
CVE-2023-4562
CVE-2023-4562 concerns Mitsubishi Electric MELSEC-F Series main modules. The vulnerability is described as an Improper Authentication flaw that may allow a remote, unauthenticated attacker to obtain sequence programs or write malicious data by sending illegitimate messages. Public details consist...
CVE-2023-4562 Information Disclosure, Information Tampering and Authentication Bypass Vulnerability in MELSEC-F Series main module
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending...
Mitsubishi Electric MELSEC-F Series 授权问题漏洞
Mitsubishi Electric MELSEC-F Series is a basic micro PLC with analog and communication function scalability for industrial control equipment from Mitsubishi Electric Mitsubishi Electric, Japan. An authentication error vulnerability exists in the Mitsubishi Electric MELSEC-F Series, which can be...
Mitsubishi Electric MELSEC-F Series
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION : Exploitable remotely/low attack complexity Vendor : Mitsubishi Electric Corporation Equipment : MELSEC-F Series Vulnerability : Improper Authentication 2. RISK EVALUATION Successful exploitation of this vulnerability may allow a remote...
CVE-2023-2846 Authentication Bypass Vulnerability in MELSEC-F Series main module
Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series main modules allows a remote unauthenticated attacker to cancel the password/keyword setting and login to the affected products by sending specially crafted packets...
Mitsubishi Electric MELSEC-F Series
1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: MELSEC-F Series Vulnerability: Authentication Bypass by Capture-replay 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to...