CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

30 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2021-8006

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.01022EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-8005

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.11751EPSS

Exploits0References6

ICS•added 2024/05/14 6:0 a.m.•27 views

Mitsubishi Electric Multiple FA Engineering Software Products (Update E)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.0 ATTENTION : Low attack complexity Vendor : Mitsubishi Electric Equipment : Multiple FA Engineering Software Products Vulnerabilities : Improper Privilege Management, Uncontrolled Resource Consumption, Out-of-bounds Write, Improper Privilege Management 2...

7.8CVSS7.4AI score0.00119EPSS

Exploits0References10

ICS•added 2023/11/30 7:0 a.m.•21 views

Mitsubishi Electric FA Engineering Software Products

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Mitsubishi Electric Equipment : FA Engineering Software Products Vulnerability : External Control of File Name or Path 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a malicious...

7.8CVSS7.9AI score0.00091EPSS

Exploits0References10

Cvelist•added 2023/11/30 3:57 a.m.•19 views

CVE-2023-5247

Malicious Code Execution Vulnerability due to External Control of File Name or Path in multiple Mitsubishi Electric FA Engineering Software Products allows a malicious attacker to execute a malicious code by having legitimate users open a specially crafted project file, which could result in...

7.8CVSS8AI score0.00091EPSS

Exploits0References2

CVE•added 2023/11/30 3:57 a.m.•38 views

CVE-2023-5247

CVE-2023-5247 involves external control of a file name or path in Mitsubishi Electric FA Engineering Software Products (GX Works3, MELSOFT iQ AppPortal, MELSOFT Navigator, Motion Control Setting). Technical details from connected sources show a malicious-code-execution risk when legitimate users ...

7.8CVSS7.7AI score0.00091EPSS

Exploits0References2Affected Software4

ICS•added 2023/09/26 6:0 a.m.•35 views

Mitsubishi Electric FA Engineering Software (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.3 ATTENTION : Low attack complexity Vendor : Mitsubishi Electric Equipment : FA Engineering Software Products Vulnerability : Incorrect Default Permissions 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a local attacker to...

9.3CVSS8.7AI score0.00026EPSS

Exploits0References10

CVE•added 2023/09/20 2:26 a.m.•62 views

CVE-2023-4088

CVE-2023-4088 describes an "Incorrect Default Permissions" flaw in Mitsubishi Electric FA Engineering Software products. The CISA advisory (ICS-CISA ICSA-23-269-03) lists multiple affected products (e.g., AL-PCS/WIN-E, GX Works2/3, GT Designer3, MELSOFT tools, Data Transfer, etc.) across all vers...

9.3CVSS8.4AI score0.00026EPSS

Exploits0References3Affected Software1

CNNVD•added 2023/09/20 12:0 a.m.•1 views

Mitsubishi Electric FA Engineering Software Security Vulnerability

Mitsubishi Electric FA Engineering Software is a series of engineering software from Mitsubishi Electric Japan. A security vulnerability exists in Mitsubishi Electric FA Engineering Software. An attacker could exploit the vulnerability to execute malicious code, which could lead to information...

9.3CVSS6.7AI score0.00026EPSS

Exploits0References5

Positive Technologies•added 2023/09/19 12:0 a.m.•1 views

PT-2023-5462 · Mitsubishi · Gx Works3 +1

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Corporation multiple FA engineering software products affected versions not specified GX Works3 affected versions not specified Description: The issue is related to incorrect default permissions, allowing a malicious local...

9.3CVSS8AI score0.00026EPSS

Exploits0References10

CISA•added 2022/11/29 12:0 a.m.•23 views

CISA Releases Seven Industrial Control Systems Advisories

CISA released seven 7 Industrial Control Systems ICS advisories on November 29, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...

0.2AI score

Exploits0References7

CNNVD•added 2021/12/16 12:0 a.m.•1 views

Mitsubishi Electric FA Engineering Software 数字错误漏洞

Mitsubishi Electric FA engineering software is an engineering software from Mitsubishi Electric Japan. It provides improved efficiency in design and debugging, reduced downtime, and data protection. The Mitsubishi Electric FA engineering software suffers from a numeric error vulnerability that...

5.5CVSS5.8AI score0.00151EPSS

Exploits0References7

ICS•added 2021/12/16 12:0 a.m.•142 views

Mitsubishi Electric FA Engineering Software (Update B)

1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION: Low attack complexity Vendor: Mitsubishi Electric Equipment: FA Engineering Software Vulnerabilities: Out-of-bounds Read, Integer Underflow 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-21-350-05...

5.5CVSS6AI score0.00151EPSS

Exploits0References4

OSV•added 2021/02/19 8:15 p.m.•1 views

CVE-2021-20588

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric FA Engineering Software CPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versions 1.011M and prior, Data Transfer versions 3.44W and prior, EZSocket versions 5.4 and prior, FR...

9.8CVSS6AI score

Exploits0References5

Prion•added 2021/02/19 8:15 p.m.•17 views

Heap overflow

Heap-based buffer overflow vulnerability in Mitsubishi Electric FA Engineering Software CPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versions 1.011M and prior, Data Transfer versions 3.44W and prior, EZSocket versions 5.4 and prior, FR Configurator all versions...

7.5CVSS9.8AI score0.11751EPSS

Exploits0References3Affected Software21

Prion•added 2021/02/19 8:15 p.m.•15 views

Input validation

Improper handling of length parameter inconsistency vulnerability in Mitsubishi Electric FA Engineering SoftwareCPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versions 1.011M and prior, Data Transfer versions 3.44W and prior, EZSocket versions 5.4 and prior, FR...

7.5CVSS9.6AI score0.01022EPSS

Exploits0References3Affected Software21

CVE•added 2021/02/19 7:58 p.m.•121 views

CVE-2021-20588

CVE-2021-20588 concerns an improper handling of length parameter inconsistency in Mitsubishi Electric FA Engineering Software. A remote, unauthenticated attacker can cause a DoS on affected software by spoofing MELSEC, GOT or FREQROL and returning crafted replies; exploitation may potentially lea...

9.8CVSS9AI score0.01022EPSS

Exploits0References5Affected Software41

Cvelist•added 2021/02/19 7:58 p.m.•19 views

CVE-2021-20588

7.5CVSS9.8AI score0.01022EPSS

Exploits0References3

CVE•added 2021/02/19 7:55 p.m.•127 views

CVE-2021-20587

CVE-2021-20587 is a heap-based buffer overflow in Mitsubishi Electric FA Engineering Software products (numerous tools such as CPU Module Logging Configuration Tool, CW Configurator, Data Transfer, EZSocket, FR Configurator family, GT Designer3/GOT variants, GX/GX Works, MELSOFT EM/Navigator, etc...

9.8CVSS9.2AI score0.11751EPSS

Exploits0References6Affected Software41

Cvelist•added 2021/02/19 7:55 p.m.•16 views

CVE-2021-20587

7.5CVSS10AI score0.11751EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by