CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CISA released four Industrial Control Systems ICS advisories on July 3, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-184-01 Hitachi Energy Relion 670/650 and SAM600-IO Series ICSA-25-184-02 Hitachi Energy...

7AI score

Exploits0References4

ICS•added 2025/07/03 6:0 a.m.•3 views

Mitsubishi Electric MELSOFT Update Manager (Update B)

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code, disclose information, alter information, or cause a denial-of-service DoS condition. 2. RECOMMENDED PRACTICES CISA reminds organizations to perform proper impact analysis and risk...

7.8CVSS7.9AI score0.44229EPSS

Exploits1References9

RedhatCVE•added 2025/05/22 8:59 p.m.•3 views

CVE-2021-20591

Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules R00/01/02CPU all versions, R04/08/16/32/120ENCPU all versions, R08/16/32/120SFCPU all versions, R08/16/32/120PCPU all versions, R08/16/32/120PSFCPU all versions allows a remote unauthenticated...

7.8CVSS6.9AI score0.00496EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:7 p.m.•4 views

CVE-2021-20607

Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition in the software by getting a user to open...

5.5CVSS6.7AI score0.00151EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:43 p.m.•5 views

CVE-2020-5527

When MELSOFT transmission port UDP/IP of Mitsubishi Electric MELSEC iQ-R series all versions, MELSEC iQ-F series all versions, MELSEC Q series all versions, MELSEC L series all versions, and MELSEC F series all versions receives massive amount of data via unspecified vectors, resource consumption...

7.5CVSS6.9AI score0.00468EPSS

Exploits0References1

RedhatCVE•added 2025/02/13 9:20 a.m.•5 views

CVE-2023-6942

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1GOT1000 versions 1.325P and prior, GT Designer3 Version1GOT2000 versions 1.320J and prior, GX Works2 versions 1.11M to 1.626C, GX Works3 versions 1.106...

7.5CVSS7.7AI score0.00444EPSS

Exploits0References1

NVD•added 2024/01/30 9:15 a.m.•11 views

CVE-2023-6943

Use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1GOT1000 versions 1.325P and prior, GT Designer3 Version1GOT2000 versions 1.320J and prior, GX Works2 versions 1.11M...

9.8CVSS9.8AI score0.0397EPSS

Exploits0References3

Prion•added 2024/01/30 9:15 a.m.•28 views

Authentication flaw

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 and later, FR Configurator2 all versions, GT Designer3 Version1GOT1000 all versions, GT Designer3 Version1GOT2000 all versions, GX Works2 versions 1.11M and later, GX Works3 all...

5CVSS7.6AI score0.00444EPSS

Exploits0References3Affected Software4

Prion•added 2024/01/30 9:15 a.m.•25 views

Code injection

Use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 and later, FR Configurator2 all versions, GT Designer3 Version1GOT1000 all versions, GT Designer3 Version1GOT2000 all versions, GX Works2 version...

7.5CVSS7.9AI score0.0397EPSS

Exploits0References3Affected Software4

CVE•added 2024/01/30 9:9 a.m.•66 views

CVE-2023-6943

CVE-2023-6943 affects Mitsubishi Electric FA Engineering Software: EZSocket (v3.0–5.92), FR Configurator2 (all), GT Designer3 GOT1000 (all up to 1.325P), GT Designer3 GOT2000 (up to 1.320J), GX Works2 (1.11M+), GX Works3 (all), MELSOFT Navigator (1.04E–2.102G), MT Works2 (all), MX Component (4.00...

9.8CVSS9.3AI score0.0397EPSS

Exploits0References3Affected Software10

Cvelist•added 2024/01/30 9:9 a.m.•16 views

CVE-2023-6943

9.8CVSS9.9AI score0.0397EPSS

Exploits0References3

CVE•added 2024/01/30 9:6 a.m.•64 views

CVE-2023-6942

CVE-2023-6942 is a Missing Authentication for Critical Function vulnerability affecting Mitsubishi Electric FA Engineering Software Products, including EZSocket (3.0–5.92), FR Configurator2, GT Designer3 (GOT1000 1.x up to 1.325P, GOT2000 1.x up to 1.320J), GX Works2 (1.11M+), GX Works3, MELSOFT ...

7.5CVSS7.7AI score0.00444EPSS

Exploits0References3Affected Software10

ICS•added 2024/01/30 7:0 a.m.•35 views

Mitsubishi Electric FA Engineering Software Products (Update D)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Mitsubishi Electric Equipment : EZSocket, FR Configurator2, GT Designer3 Version1GOT1000, GT Designer3 Version1GOT2000, GX Works2, GX Works3, MELSOFT Navigator, MT Works2, MX Component, MX...

9.8CVSS9.2AI score0.0397EPSS

Exploits0References10

CNNVD•added 2024/01/30 12:0 a.m.•1 views

Various Mitsubishi Electric products Security breach

Mitsubishi Electric FR Configurator2 and others are products of Mitsubishi Electric, Japan.Mitsubishi Electric FR Configurator2 is an inverter drive configuration application.Mitsubishi Electric GT Designer3 is an inverter interface programming software. Mitsubishi Electric GT Designer3 is a HMI...

9.8CVSS7AI score0.0397EPSS

Exploits0References4

Positive Technologies•added 2024/01/30 12:0 a.m.•2 views

PT-2024-1480 · Mitsubishi · Gx Works3 +8

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric EZSocket versions 3.0 to 5.92 Mitsubishi Electric GT Designer3 Version1GOT1000 versions 1.325P and prior Mitsubishi Electric GT Designer3 Version1GOT2000 versions 1.320J and prior Mitsubishi Electric GX Works2 versions 1.1...

7.8CVSS7.2AI score0.00444EPSS

Exploits0References19

Positive Technologies•added 2024/01/30 12:0 a.m.•2 views

PT-2024-1401 · Mitsubishi · Mx +8

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92 GT Designer3 Version1GOT1000 versions 1.325P and prior GT Designer3 Version1GOT2000 versions 1.320J and prior GX Works2 versions 1.11M and later GX Works3 versions 1.106L and prior...

9.8CVSS8.1AI score0.0397EPSS

Exploits0References20

ICS•added 2023/11/30 7:0 a.m.•22 views

Mitsubishi Electric FA Engineering Software Products

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Mitsubishi Electric Equipment : FA Engineering Software Products Vulnerability : External Control of File Name or Path 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a malicious...

7.8CVSS7.9AI score0.00091EPSS

Exploits0References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by