52 matches found
EUVD-2023-54417
Malicious code in bioql PyPI...
EUVD-2021-8014
Malicious code in bioql PyPI...
EUVD-2021-8031
Malicious code in bioql PyPI...
EUVD-2021-8030
Malicious code in bioql PyPI...
CVE-2023-4562
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending...
CVE-2021-20612
Lack of administrator control over security vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.14 and prior, FX3U-ENET-L Firmware version 1.14 and prior and FX3U-ENET-P502 Firmware version 1.14 and prior allows a remote unauthenticated attacker to cause a denial-of-service DoS conditio...
CVE-2021-20613
Improper initialization vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.16 and prior, FX3U-ENET-L Firmware version 1.16 and prior and FX3U-ENET-P502 Firmware version 1.16 and prior allows a remote unauthenticated attacker to cause a denial-of-service DoS condition in communication...
CVE-2021-20596
NULL Pointer Dereference in MELSEC-F Series FX3U-ENET firmware version 1.14 and prior, FX3U-ENET-L firmware version 1.14 and prior and FX3U-ENET-P502 firmware version 1.14 and prior allows a remote unauthenticated attacker to cause a DoS condition in communication by sending specially crafted...
Mitsubishi Electric MELSEC Series Missing Authentication For Critical Function (CVE-2023-4699)
Insufficient Verification of Data Authenticity vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules and MELSEC iQ-F Series CPU modules allows a remote unauthenticated attacker to reset the memory of the products to factory default state and cause denial-of-service DoS...
Mitsubishi Electric MELSEC-F Series Improper Authentication (CVE-2023-4562)
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending...
The vulnerabilities of the microprogrammed software for Ethernet communication adapters, the FX3U-ENETADP/Ethernet Communication Block FX3U-ENET(-L), and the microprogrammed software for programmable logic controllers MELSEC iQ-F and MELSEC-F, allow attackers to cause malfunctions in the equipment’s operation.
The vulnerabilities of microprogrammed software for Ethernet communication adapters, such as the FX3U-ENETADP/Ethernet Communication Block FX3U-ENET-L, and microprogrammed software for programmable logic controllers like MELSEC iQ-F and MELSEC-F, are related to insufficient verification of data...
CVE-2023-4699
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELSEC iQ-L series, MELSEC Q series, MELSEC-L series, Mitsubishi Electric CNC M800V/M80V series,...
CVE-2023-4699 Arbitrary Command Execution Vulnerability in Mitsubishi Electric proprietary protocol communication of multiple FA products
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELSEC iQ-L series, MELSEC Q series, MELSEC-L series, Mitsubishi Electric CNC M800V/M80V series,...
CVE-2023-4699
CVE-2023-4699 describes a Missing Authentication for Critical Function vulnerability affecting Mitsubishi Electric MELSEC-F/iQ-F/iQ-R/iQ-L/Q/L series and related CNC modules. A remote, unauthenticated attacker can send crafted packets to affected devices to execute arbitrary commands, potentially...
Mitsubishi Electric MELSEC iQ-F series and Mitsubishi Electric MELSEC-F Series Data Forgery Issue Vulnerability
The Mitsubishi Electric MELSEC iQ-F series and Mitsubishi Electric MELSEC-F Series are both products of Mitsubishi Electric Corporation Mitsubishi Electric, Japan. The Mitsubishi Electric MELSEC-F Series is a programmable logic controller, and the Mitsubishi Electric MELSEC-F Series is a basic...
Vulnerability of microprogrammed programmable logic controllers MELSEC-F: related to authentication breaches, allowing attackers to circumvent existing security restrictions
The vulnerability of MELSEC-F programmable logic controllers’ microprogramming software is related to authentication breaches. Exploiting this vulnerability allows an attacker, operating remotely, to circumvent existing security restrictions...
Mitsubishi Electric MELSEC-F Series Authentication Error Vulnerability
Mitsubishi Electric MELSEC-F Series is a basic micro PLC with analog and communication function scalability for industrial control equipment from Mitsubishi Electric Mitsubishi Electric, Japan. An authentication error vulnerability exists in the Mitsubishi Electric MELSEC-F Series, which can be...
CVE-2023-4562
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending...
Authentication flaw
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending...
CVE-2023-4562 Information Disclosure, Information Tampering and Authentication Bypass Vulnerability in MELSEC-F Series main module
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending...