Lucene search
+L

694 matches found

ICS
ICS
added 2025/09/23 6:0 a.m.9 views

Mitsubishi Electric MELSEC-Q Series CPU Module

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a denial of service DoS. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all...

6.8CVSS6.9AI score0.00952EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/09/21 9:31 a.m.11 views

CVE-2025-8531

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series Q03UDVCPU, Q04UDVCPU, Q06UDVCPU, Q13UDVCPU, Q26UDVCPU, Q04UDPVCPU, Q06UDPVCPU, Q13UDPVCPU, and Q26UDPVCPU with the first 5 digits of serial No. "24082" to "27081" allows a remote...

6.8CVSS7.2AI score0.00952EPSS
Exploits0References1
NVD
NVD
added 2025/09/19 10:15 a.m.5 views

CVE-2025-8531

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series Q03UDVCPU, Q04UDVCPU, Q06UDVCPU, Q13UDVCPU, Q26UDVCPU, Q04UDPVCPU, Q06UDPVCPU, Q13UDPVCPU, and Q26UDPVCPU with the first 5 digits of serial No. "24082" to "27081" allows a remote...

6.8CVSS0.00952EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/19 9:30 a.m.15 views

CVE-2025-8531

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series Q03UDVCPU, Q04UDVCPU, Q06UDVCPU, Q13UDVCPU, Q26UDVCPU, Q04UDPVCPU, Q06UDPVCPU, Q13UDPVCPU, and Q26UDPVCPU with the first 5 digits of serial No. "24082" to "27081" allows a remote...

6.8CVSS0.00952EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/09/19 9:30 a.m.3 views

CVE-2025-8531

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series Q03UDVCPU, Q04UDVCPU, Q06UDVCPU, Q13UDVCPU, Q26UDVCPU, Q04UDPVCPU, Q06UDPVCPU, Q13UDPVCPU, and Q26UDPVCPU with the first 5 digits of serial No. "24082" to "27081" allows a remote...

6.8CVSS6.8AI score0.00952EPSS
Exploits0References3
CVE
CVE
added 2025/09/19 9:30 a.m.23 views

CVE-2025-8531

The CVE-2025-8531 affects Mitsubishi Electric MELSEC-Q Series CPU modules (Q03UDVCPU, Q04UDVCPU, Q06UDVCPU, Q13UDVCPU, Q26UDVCPU, Q04UDPVCPU, Q06UDPVCPU, Q13UDPVCPU, Q26UDPVCPU) with serial numbers starting with the first five digits between 24082 and 27081. The vulnerability arises from improper...

6.8CVSS6.8AI score0.00952EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/19 12:0 a.m.5 views

Mitsubishi Electric MELSEC-Q Series 安全漏洞

The Mitsubishi Electric MELSEC-Q Series is a family of programmable logic controllers from Mitsubishi Electric Japan. A security vulnerability exists in the Mitsubishi Electric MELSEC-Q Series that arises from improper handling of the length parameter, which could result in an integer overflow th...

6.8CVSS7AI score0.00952EPSS
Exploits0References3
CISA
CISA
added 2025/09/09 12:0 p.m.5 views

CISA Releases Fourteen Industrial Control Systems Advisories

CISA released fourteen Industrial Control Systems ICS advisories on September 9, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-252-01 Rockwell Automation ThinManager ICSA-25-252-02 ABB Cylon Aspect BMS/BAS...

6.5AI score
Exploits0References14
RedhatCVE
RedhatCVE
added 2025/09/03 4:24 a.m.7 views

CVE-2025-7731

Cleartext Transmission of Sensitive Information vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to obtain credential information by intercepting SLMP communication messages, and read or write the device values of the product...

7.5CVSS6.9AI score0.00311EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/03 4:24 a.m.4 views

CVE-2025-7405

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to read or write the device values of the product and stop the operation of the programs, since MODBUS/TCP in the products does not...

7.3CVSS7.2AI score0.00428EPSS
Exploits0References1
NVD
NVD
added 2025/09/01 4:15 a.m.6 views

CVE-2025-7731

Cleartext Transmission of Sensitive Information vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to obtain credential information by intercepting SLMP communication messages, and read or write the device values of the product...

7.5CVSS0.00311EPSS
Exploits0References3
CVE
CVE
added 2025/09/01 3:57 a.m.23 views

CVE-2025-7731

CVE-2025-7731 describes an information-disclosure vulnerability in Mitsubishi Electric MELSEC iQ-F Series CPU modules caused by cleartext transmission of sensitive information over SLMP. An unauthenticated remote attacker can intercept SLMP messages to obtain credentials, then read or write devic...

7.5CVSS6.3AI score0.00311EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/09/01 3:54 a.m.2 views

CVE-2025-7405 Information Disclosure, Information Tampering, and Denial of Service (DoS) Vulnerability in MELSEC iQ-F Series CPU module

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to read or write the device values of the product and stop the operation of the programs, since MODBUS/TCP in the products does not...

7.3CVSS6.7AI score0.00428EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/01 12:0 a.m.6 views

Mitsubishi Electric MELSEC iQ-F Series CPU 访问控制错误漏洞

The Mitsubishi Electric MELSEC iQ-F Series CPUs are a series of CPU modules from Mitsubishi Electric Corporation Mitsubishi Electric, Japan. An access control error vulnerability exists in the Mitsubishi Electric MELSEC iQ-F Series CPUs, which stems from a lack of authentication of a critical...

7.3CVSS6.8AI score0.00428EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/09/01 12:0 a.m.5 views

Mitsubishi Electric MELSEC iQ-F Series CPU 安全漏洞

The Mitsubishi Electric MELSEC iQ-F Series CPUs are a series of CPU modules from Mitsubishi Electric Japan. A security vulnerability exists in the Mitsubishi Electric MELSEC iQ-F Series CPU that originates from the transmission of sensitive information in clear text, which could lead to credentia...

7.5CVSS6.2AI score0.00311EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/01 12:0 a.m.6 views

PT-2025-35446

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module affected versions not specified Description: A cleartext transmission issue exists in the Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module. A remote, unauthenticated...

7.5CVSS6.2AI score0.00311EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/09/01 12:0 a.m.3 views

PT-2025-35445

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric MELSEC iQ-F Series CPU module affected versions not specified Description: A missing authentication feature in the MODBUS/TCP implementation of the Mitsubishi Electric MELSEC iQ-F Series CPU module allows a remote,...

7.3CVSS6.4AI score0.00428EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/08/30 6:20 p.m.6 views

CVE-2025-5514

Improper Handling of Length Parameter Inconsistency vulnerability in web server function on Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to delay the processing of the web server function and prevent legitimate users from utilizing the web...

5.3CVSS7AI score0.00546EPSS
Exploits0References1
CISA
CISA
added 2025/08/28 12:0 p.m.7 views

CISA Releases Nine Industrial Control Systems Advisories

CISA released nine Industrial Control Systems ICS advisories on August 28, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-240-01 Mitsubishi Electric MELSEC iQ-F Series CPU Module ICSA-25-240-02 Mitsubishi...

6.8AI score
Exploits0References9
ICS
ICS
added 2025/08/28 6:0 a.m.9 views

Mitsubishi Electric MELSEC iQ-F Series CPU Module

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to read or write the device values of the product. In addition, the attacker may be able to stop the operation of the programs. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize...

7.3CVSS6.8AI score0.00428EPSS
Exploits0References10
Rows per page
Query Builder