22 matches found
Mitsubishi Electric GX Works2
RISK EVALUATION Successful exploitation of this vulnerability could open project files protected by user authentication using disclosed credential information, and obtain or modify project information. 2. RECOMMENDED PRACTICES CISA reminds organizations to perform proper impact analysis and risk...
PT-2025-38522
Name of the Vulnerable Software and Affected Versions Mitsubishi Electric Corporation MELSEC-Q Series Q03UDVCPU, Q04UDVCPU, Q06UDVCPU, Q13UDVCPU, Q26UDVCPU, Q04UDPVCPU, Q06UDPVCPU, Q13UDPVCPU, and Q26UDPVCPU with serial numbers starting with "24082" through "27081" Description An improper handlin...
CVE-2023-6942
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1GOT1000 versions 1.325P and prior, GT Designer3 Version1GOT2000 versions 1.320J and prior, GX Works2 versions 1.11M to 1.626C, GX Works3 versions 1.106...
CVE-2023-6942
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1GOT1000 versions 1.325P and prior, GT Designer3 Version1GOT2000 versions 1.320J and prior, GX Works2 versions 1.11M to 1.626C, GX Works3 versions 1.106...
CVE-2023-6943
CVE-2023-6943 affects Mitsubishi Electric FA Engineering Software: EZSocket (v3.0–5.92), FR Configurator2 (all), GT Designer3 GOT1000 (all up to 1.325P), GT Designer3 GOT2000 (up to 1.320J), GX Works2 (1.11M+), GX Works3 (all), MELSOFT Navigator (1.04E–2.102G), MT Works2 (all), MX Component (4.00...
PT-2024-1401 · Mitsubishi · Mx +8
Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92 GT Designer3 Version1GOT1000 versions 1.325P and prior GT Designer3 Version1GOT2000 versions 1.320J and prior GX Works2 versions 1.11M and later GX Works3 versions 1.106L and prior...
The vulnerability of the software access control mechanism for Mitsubishi Electric GX Works3 allows a intruder to execute arbitrary code.
The vulnerability of the software access control mechanism for Mitsubishi Electric’s GX Works3 programming platform is related to the use of a strictly encrypted cryptographic key. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code by replacing the...
CVE-2022-29833
Insufficiently Protected Credentials vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users could access to MELSEC safety CPU modules illgally...
CVE-2022-29831
Use of Hard-coded Password vulnerability in Mitsubishi Electric Corporation GX Works3 versions from 1.015R to 1.095Z allows a remote unauthenticated attacker to obtain information about the project file for MELSEC safety CPU modules...
CVE-2022-29825
Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 GOT2000 versions from 1.122C to 1.290C, and MT Works2 versions from 1.100E to 1.200J allows an unauthenticated attacker to disclose sensitive information. As a result,...
CVE-2022-29832
Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later, GX Works2 all versions and GX Developer versions 8.40S and later allows a remote unauthenticated attacker to disclose sensitive information. As a result,...
Mitsubishi Electric GX Works3 安全漏洞
Mitsubishi Electric GX Works3 is the latest generation of programming and maintenance software designed specifically for the MELSEC iQ-R and MELSEC iQ-F series control systems from Mitsubishi Electric Japan. A security vulnerability exists in Mitsubishi Electric GX Works3 version 1.086Q and prior...
CVE-2022-29832
Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later, GX Works2 all versions and GX Developer versions 8.40S and later allows a remote unauthenticated attacker to disclose sensitive information. As a result,...
CVE-2022-29832
Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later, GX Works2 all versions and GX Developer versions 8.40S and later allows a remote unauthenticated attacker to disclose sensitive information. As a result,...
Mitsubishi Electric GX Works 安全漏洞
Mitsubishi Electric GX Works3 is the latest generation of programming and maintenance software from Mitsubishi Electric Corporation Mitsubishi Electric, Japan, designed specifically for the MELSEC iQ-R and MELSEC iQ-F series control systems. A security vulnerability exists in Mitsubishi Electric ...
PT-2022-6320 · Mitsubishi · Gx Works3
Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Corporation GX Works3 versions from 1.015R to 1.095Z Description: The issue is related to the use of hard-coded passwords in the software, allowing a remote unauthenticated attacker to obtain information about the project...
PT-2022-19859 · Mitsubishi · Gx Works3
Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric GX Works3 versions from 1.000A and later Description: The issue allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated attackers may view programs and project files or...
PT-2022-5974 · Mitsubishi · Motion Control Setting +1
Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z Motion Control SettingGX Works3 related software versions from 1.000A and later Description: The issue is related to the use of a hard-coded cryptographic key, allowing a remote...
PT-2021-14074 · Mitsubishi · Ezsocket +2
Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric GX Works2 versions 1.606G and prior Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior Mitsubishi Electric EZSocket versions 5.4 and prior Description: The issue allows an attacker to cause a Denial of Service...
Denial of Service Vulnerability in Mitsubishi Electric Corporation GX Works2 (CNVD-2020-49073)
GX Work2 is a PLC programming software developed by Mitsubishi Electric Automation Co., Ltd. for PLC design, debugging, maintenance and other work, which is widely used in electric power, machinery manufacturing, iron and steel, petroleum, chemical and other industrial control fields. A denial of...