CVE-2023-6374

The CVE-2023-6374 vulnerability affects Mitsubishi Electric MELSEC WS Series Ethernet Interface Module WS0-GETH00200 (all serial numbers). A remote unauthenticated attacker can bypass authentication via a capture-replay attack, enabling unauthorized login to the module and the potential disclosur...

Mitsubishi Electric MELSEC WS Series Security Vulnerability

The Mitsubishi Electric MELSEC WS Series is a programmable logic controller from Mitsubishi Electric Japan. A security vulnerability exists in Mitsubishi Electric MELSEC WS Series WS0-GETH00200. An attacker could use this vulnerability to bypass authentication and disclose or tamper with programs...

The communication module of the Mitsubishi Electric WS0-GETH00200 security controller is vulnerable due to the lack of authentication. This allows attackers to escalate their privileges and gain access to the device.

The vulnerability of the communication module for Mitsubishi Electric WS0-GETH00200 security controllers is related to the absence of authentication. Exploiting this vulnerability allows a malicious actor to remotely increase their privileges and gain access to the device via the TELNET network...

Mitsubishi Electric Corporation MELSEC WS 安全漏洞

The Mitsubishi Electric Corporation MELSEC WS Series is a programmable logic controller from Mitsubishi Electric Japan. A security vulnerability exists in the Mitsubishi Electric Corporation MELSEC WS WS0-GETH00200, which originates from a vulnerability that could allow an unauthenticated, remote...

Mitsubishi Electric MELSEC WS Series

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: WS0-GETH00200 Vulnerabilities: Active Debug Code 2. UPDATE OR REPOSTED INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-23-138-02...