Lucene search
K

121 matches found

Cvelist
Cvelist
added 2023/08/03 11:42 p.m.30 views

CVE-2023-0525

Weak Encoding for Password vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.49.000 and prior, GT25 model versions 01.49.000 and prior, GT23 model versions 01.49.000 and prior, GT21 model versions 01.49.000 and prior, GOT SIMPLE Series GS25 model versions...

7.5CVSS7.7AI score0.00478EPSS
Exploits0References3
ICS
ICS
added 2023/08/03 6:0 a.m.49 views

Mitsubishi Electric GT and GOT Series Products

1. EXECUTIVE SUMMARY ​CVSS v3 7.5 ​ATTENTION: Exploitable remotely/low attack complexity ​Vendor: Mitsubishi Electric ​Equipment: GT Designer3, GOT2000 Series, GOT SIMPLE Series, and GT SoftGOT2000 ​Vulnerability: Weak Encoding for Password 2. RISK EVALUATION ​Successful exploitation of this...

7.5CVSS7.6AI score0.00478EPSS
Exploits0References8
ICS
ICS
added 2023/08/03 6:0 a.m.35 views

Mitsubishi Electric GOT2000 and GOT SIMPLE

1. EXECUTIVE SUMMARY ​CVSS v3 5.9 ​ATTENTION: Exploitable remotely ​Vendor: Mitsubishi Electric ​Equipment: GOT2000 Series and GOT SIMPLE Series ​Vulnerability: Predictable Exact Value from Previous Values 2. RISK EVALUATION ​Successful exploitation of this vulnerability could allow an attacker...

9.1CVSS9AI score0.00754EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2023/08/03 12:0 a.m.6 views

PT-2023-16331 · Mitsubishi · Got Simple Series Gs25 +7

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Corporation GOT2000 Series GT27 versions 01.49.000 and prior Mitsubishi Electric Corporation GOT2000 Series GT25 versions 01.49.000 and prior Mitsubishi Electric Corporation GOT2000 Series GT23 versions 01.49.000 and prior...

7.5CVSS7.5AI score0.00478EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/08/03 12:0 a.m.4 views

Mitsubishi Electric GOT2000 Security Feature Issue Vulnerability

Mitsubishi Electric GOT2000 is a GOT2000 series graphical operator terminal from Mitsubishi Electric Japan. A security vulnerability exists in the Mitsubishi Electric GOT2000. An unauthenticated remote attacker can hijack a data connection session hijacking or prevent a legitimate user from...

9.1CVSS6.9AI score0.00754EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/06/12 12:0 a.m.4 views

Mitsubishi Electric GOT2000 加密问题漏洞

Mitsubishi Electric GOT2000 is a GOT2000 series graphical operator terminal from Mitsubishi Electric Japan. A security vulnerability exists in Mitsubishi Electric GOT2000 version 01.49.000 and earlier versions. An attacker could exploit this vulnerability by sniffing packets to obtain passwords i...

7.5CVSS7.4AI score0.00478EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.6 views

The vulnerability in the implementation of the GOT Mobile function in the software for graphic control panels from Mitsubishi Electric’s GOT2000 series, models GT27 and GT25, as well as the HMI platform GT SoftGOT2000, allows a attacker to carry out a “click hijacking” attack.

The vulnerability of the GOT Mobile function implementation in Mitsubishi Electric’s GOT2000 series graphic control panels, models GT27 and GT25, as well as the HMI platform GT SoftGOT2000, is related to an incorrect limitation on the layers or frames that can be displayed in the user interface...

6.1CVSS5.5AI score0.0046EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/02/20 12:0 a.m.10 views

The vulnerability in the implementation of the GOT Mobile function in the software for graphic control panels from Mitsubishi Electric’s GOT2000 series, models GT27 and GT25, as well as the HMI platform GT SoftGOT2000, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the GOT Mobile function implementation in Mitsubishi Electric’s GOT2000 series graphic control panels, models GT27 and GT25, as well as the HMI platform GT SoftGOT2000, involves bypassing authentication through spoofing. Exploiting this vulnerability can allow unauthorized...

7.1CVSS7.4AI score0.00683EPSS
Exploits0References5Affected Software3
ICS
ICS
added 2023/02/02 12:0 p.m.49 views

Mitsubishi Electric Multiple Factory Automation Products (Update D)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: GOT2000 compatible HMI software, CC-Link IE TSN Industrial Managed Switch, MELSEC iQ-R Series OPC UA Server Module Vulnerabilities: Infinite Loop, OS Command Injection 2...

10CVSS10AI score0.83223EPSS
Exploits7References29
OSV
OSV
added 2023/02/02 8:15 a.m.2 views

CVE-2022-40269

Authentication Bypass by Spoofing vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.14.000 to 01.47.000, Mitsubishi Electric Corporation GOT2000 Series GT25 model versions 01.14.000 to 01.47.000 and Mitsubishi Electric Corporation GT SoftGOT2000 versions 1.265...

8.1CVSS5.7AI score0.00683EPSS
Exploits0References2
OSV
OSV
added 2023/02/02 8:15 a.m.3 views

CVE-2022-40268

Improper Restriction of Rendered UI Layers or Frames vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.14.000 to 01.47.000, Mitsubishi Electric Corporation GOT2000 Series GT25 model versions 01.14.000 to 01.47.000 and Mitsubishi Electric Corporation GT...

4.7CVSS5.8AI score0.0046EPSS
Exploits0References2
Prion
Prion
added 2023/02/02 8:15 a.m.17 views

Design/Logic Flaw

Authentication Bypass by Spoofing vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.14.000 to 01.47.000, Mitsubishi Electric Corporation GOT2000 Series GT25 model versions 01.14.000 to 01.47.000 and Mitsubishi Electric Corporation GT SoftGOT2000 versions 1.265...

5.8CVSS7.7AI score0.00683EPSS
Exploits0References2Affected Software3
CVE
CVE
added 2023/02/02 7:17 a.m.53 views

CVE-2022-40269

CVE-2022-40269 affects Mitsubishi Electric GOT2000 Series GOT27 (01.14.000–01.47.000), GOT25 (01.14.000–01.47.000), and GT SoftGOT2000 (1.265B–1.285X). The issue is an Authentication Bypass by Spoofing via inappropriate HTML attributes, allowing a remote unauthenticated attacker to disclose sensi...

8.1CVSS7.7AI score0.00683EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/02 7:13 a.m.7 views

CVE-2022-40268

Improper Restriction of Rendered UI Layers or Frames vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.14.000 to 01.47.000, Mitsubishi Electric Corporation GOT2000 Series GT25 model versions 01.14.000 to 01.47.000 and Mitsubishi Electric Corporation GT...

6.1CVSS7.3AI score0.0046EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/02/02 7:13 a.m.31 views

CVE-2022-40268

Improper Restriction of Rendered UI Layers or Frames vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.14.000 to 01.47.000, Mitsubishi Electric Corporation GOT2000 Series GT25 model versions 01.14.000 to 01.47.000 and Mitsubishi Electric Corporation GT...

6.1CVSS6.5AI score0.0046EPSS
Exploits0References2
CISA
CISA
added 2023/02/02 12:0 a.m.23 views

CISA Releases Six Industrial Control Systems Advisories

CISA released six Industrial Control Systems ICS advisories on February 2, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...

1.5AI score
Exploits0References6
CNNVD
CNNVD
added 2023/02/02 12:0 a.m.4 views

Mitsubishi Electric GOT2000和GT SoftGOT2000 安全漏洞

Mitsubishi Electric GOT2000 and Mitsubishi Electric GT SoftGOT2000 are both products of Mitsubishi Electric Japan.Mitsubishi Electric GOT2000 is a GOT2000 series Mitsubishi Electric GT SoftGOT2000 is an HMI software that runs on PCs and computers. It can monitor and operate the information of FA...

6.1CVSS5.2AI score0.0046EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/02/02 12:0 a.m.4 views

Mitsubishi Electric GOT2000 和GT SoftGOT2000 安全漏洞

Mitsubishi Electric GOT2000 and Mitsubishi Electric GT SoftGOT2000 are both products of Mitsubishi Electric Japan.Mitsubishi Electric GOT2000 is a GOT2000 series Mitsubishi Electric GT SoftGOT2000 is an HMI software that runs on PCs and computers. It can monitor and operate the information of FA...

8.1CVSS7.4AI score0.00683EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/11/30 12:0 a.m.26 views

Mitsubishi Electric GOT2000 (CVE-2022-40266)

Improper Input Validation vulnerability in Mitsubishi Electric GOT2000 Series GT27 model FTP server versions 01.39.000 and prior, Mitsubishi Electric GOT2000 Series GT25 model FTP server versions 01.39.000 and prior and Mitsubishi Electric GOT2000 Series GT23 model FTP server versions 01.39.000 a...

6.3AI score0.00822EPSS
Exploits0References4
ICS
ICS
added 2022/11/29 12:0 a.m.37 views

Mitsubishi Electric GOT2000

1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely Vendor: Mitsubishi Electric Equipment: GOT2000 Series Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition by...

6.5CVSS6.5AI score0.00822EPSS
Exploits0References4
Rows per page
Query Builder