Lucene search
+L

4 matches found

ICS
ICS
added 2023/06/06 6:0 a.m.60 views

Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update C)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely/low attack complexity Vendor : Mitsubishi Electric Equipment : MELSEC iQ-R Series/iQ-F Series EtherNet/IP Modules and EtherNet/IP Configuration Tool Vulnerabilities: Weak Password Requirements, Use of Hard-coded Credentials, Missin...

7.5CVSS7.9AI score0.0084EPSS
Exploits0References10
NVD
NVD
added 2023/06/02 5:15 a.m.21 views

CVE-2023-2061

Use of Hard-coded Password vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to obtain a hard-coded password and access to the module via F...

7.5CVSS6.9AI score0.00549EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/06/02 4:3 a.m.22 views

CVE-2023-2061 Authentication bypass vulnerability in MELSEC iQ-R Series / iQ-F Series EtherNet/IP Modules

Use of Hard-coded Password vulnerability in FTP function on Mitsubishi Electric Corporation MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP allows a remote unauthenticated attacker to obtain a hard-coded password and access to the module via F...

6.2CVSS7.8AI score0.00549EPSS
Exploits0References2
CVE
CVE
added 2023/06/02 4:3 a.m.71 views

CVE-2023-2061

CVE-2023-2061 describes an authentication bypass in Mitsubishi Electric MELSEC iQ-R Series RJ71EIP91 and iQ-F Series FX5-ENET/IP EtherNet/IP modules due to use of hard-coded credentials in the FTP function. The underlying cause is a hard-coded password that permits remote unauthenticated FTP acce...

7.5CVSS6.9AI score0.00549EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder