25 matches found
CVE-2021-20589
Buffer access with incorrect length value vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.38.000, GT25 model communication driver versions 01.19.000 through 01.38.000, GT23 model communication driver versions 01.19.000 through 01.38.000 and GT21 model...
CVE-2023-0525
Weak Encoding for Password vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.49.000 and prior, GT25 model versions 01.49.000 and prior, GT23 model versions 01.49.000 and prior, GT21 model versions 01.49.000 and prior, GOT SIMPLE Series GS25 model versions...
CVE-2023-0525
Weak Encoding for Password vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.49.000 and prior, GT25 model versions 01.49.000 and prior, GT23 model versions 01.49.000 and prior, GT21 model versions 01.49.000 and prior, GOT SIMPLE Series GS25 model versions...
CVE-2022-40266
Improper Input Validation vulnerability in Mitsubishi Electric GOT2000 Series GT27 model FTP server versions 01.39.000 and prior, Mitsubishi Electric GOT2000 Series GT25 model FTP server versions 01.39.000 and prior and Mitsubishi Electric GOT2000 Series GT23 model FTP server versions 01.39.000 a...
CVE-2022-40266 Denial-of-Service (DoS) Vulnerability in FTP Server Function on GOT2000 Series
Improper Input Validation vulnerability in Mitsubishi Electric GOT2000 Series GT27 model FTP server versions 01.39.000 and prior, Mitsubishi Electric GOT2000 Series GT25 model FTP server versions 01.39.000 and prior and Mitsubishi Electric GOT2000 Series GT23 model FTP server versions 01.39.000 a...
CVE-2022-40266
CVE-2022-40266 affects Mitsubishi Electric GOT2000 Series FTP servers (GT27, GT25, GT23) with versions 01.39.000 and prior. The root cause is improper input validation in the FTP service, which could allow a remote authenticated attacker to trigger a Denial of Service by sending specially crafted...
Input validation
Improper input validation vulnerability in GOT2000 series GT27 model all versions, GOT2000 series GT25 model all versions, GOT2000 series GT23 model all versions, GOT2000 series GT21 model all versions, GOT SIMPLE series GS21 model all versions, and GT SoftGOT2000 all versions allows an remote...
Design/Logic Flaw
Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions 01.19.000 through 01.39.010 and GT23 model communication driver versions 01.19.000 through 01.39.010 and GT SoftGOT2000 versions...
CVE-2021-20592
CVE-2021-20592 affects Mitsubishi Electric GOT2000 family: GOT2000 GT27/GT25/GT23 MODBUS/TCP Slave drivers (versions 01.19.000ā01.39.010) and GT SoftGOT2000 (versions 1.170Cā1.256S). Root cause is missing synchronization in the MODBUS/TCP communication path, allowing a remote unauthenticated atta...
CVE-2021-20592
Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions 01.19.000 through 01.39.010 and GT23 model communication driver versions 01.19.000 through 01.39.010 and GT SoftGOT2000 versions...
CVE-2021-20589
Buffer access with incorrect length value vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.38.000, GT25 model communication driver versions 01.19.000 through 01.38.000, GT23 model communication driver versions 01.19.000 through 01.38.000 and GT21 model...
Buffer overflow
Buffer access with incorrect length value vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.38.000, GT25 model communication driver versions 01.19.000 through 01.38.000, GT23 model communication driver versions 01.19.000 through 01.38.000 and GT21 model...
Multiple vulnerabilities in TCP/IP function on Mitsubishi Electric GOT2000 series
Overview TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series GT27, GT25, and GT23 contains multiple vulnerabilities listed below. Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-119 - CVE-2020-5595 Session Fixation CWE-384 - CVE-2020-5596 NUL...
Multiple Mitsubishi Electric Products Null Pointer Reference Vulnerability
Mitsubishi Electric GT27 and others are a GOT2000 series graphic operation terminal from Mitsubishi Electric Japan. A null pointer reference vulnerability exists in CoreOS Y and prior versions in the Mitsubishi Electric GT27, GT25, and GT23 GOT2000 series, which can be exploited by an attacker to...
Buffer Overflow Vulnerability in Multiple Mitsubishi Electric Products
Mitsubishi Electric GT27 and others are a GOT2000 series graphic operation terminal from Mitsubishi Electric Japan. A buffer overflow vulnerability exists in CoreOS Y and prior versions in the Mitsubishi Electric GT27, GT25, and GT23 GOT2000 series. An attacker could exploit the vulnerability to...
Multiple Mitsubishi Electric Products License Issue Vulnerability
Mitsubishi Electric GT27 and others are a GOT2000 series graphic operation terminal from Mitsubishi Electric Japan. An authorization issue vulnerability exists in CoreOS Y and prior versions in the Mitsubishi Electric GT27, GT25, and GT23 GOT2000 series. An attacker could exploit the vulnerabilit...
CVE-2020-5597
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model contains a null pointer dereference vulnerability, which may allow a remote attacker to stop the network functions of the products ...
CVE-2020-5600
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model contains a resource management error vulnerability, which may allow a remote attacker to stop the network functions of the products...
CVE-2020-5597
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model contains a null pointer dereference vulnerability, which may allow a remote attacker to stop the network functions of the products ...
CVE-2020-5596
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model does not properly manage sessions, which may allow a remote attacker to stop the network functions of the products or execute a...