Vulnerabilities in Mitsubishi Electric

20 results

CVE-2022-33318CRITICALDeserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics DigiEPSS 45.8%CVE-2019-6535HIGHMitsubishi Electric MELSEC-Q Series PLCs Resource ExhaustionEPSS 4.3%CVE-2020-12007—A specially crafted communication packet sent to the affected devices could allow remote code execution and a denial-of-service condition duEPSS 3.9%CVE-2020-12009—A specially crafted communication packet sent to the affected device could cause a denial-of-service condition due to a deserialization vulnEPSS 3.6%CVE-2019-10977—In Mitsubishi Electric MELSEC-Q series Ethernet module QJ71E71-100 serial number 20121 and prior, an attacker could send crafted TCP packetsEPSS 3.5%CVE-2020-12013—A specially crafted WCF client that interfaces to the may allow the execution of certain arbitrary SQL commands remotely. This affects: MitsEPSS 3.0%CVE-2020-16226—Mitsubishi Electric Multiple ProductsEPSS 2.2%CVE-2020-14523HIGHMitsubishi Electric Factory Automation Products Path TraversalEPSS 2.2%CVE-2020-12015—A specially crafted communication packet sent to the affected systems could cause a denial-of-service condition due to improper deserializatEPSS 2.0%CVE-2022-33319HIGHOut-of-bounds Read vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics Digital Solutions GEPSS 1.3%CVE-2022-29834HIGHImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mitsubishi Electric GENESIS64 versions 10.97EPSS 1.3%CVE-2020-14521HIGHMitsubishi Electric Factory Automation Engineering Products Unquoted Search Path or ElementEPSS 1.2%CVE-2019-10976—Mitsubishi Electric FR Configurator2, Version 1.16S and prior. This vulnerability is triggered when input passed to the XML parser is not saEPSS 1.0%CVE-2019-10972—Mitsubishi Electric FR Configurator2, Version 1.16S and prior. This vulnerability can be triggered when an attacker provides the target withEPSS 0.9%CVE-2020-14496HIGHMitsubishi Electric Multiple Factory Automation Engineering Software Products (Update A) - Permission IssuesEPSS 0.8%CVE-2022-40266MEDIUMDenial-of-Service (DoS) Vulnerability in FTP Server Function on GOT2000 SeriesEPSS 0.8%CVE-2022-33320HIGHDeserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics DigiEPSS 0.4%CVE-2022-33315HIGHDeserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics DigiEPSS 0.3%CVE-2022-33316HIGHDeserialization of Untrusted Data vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, Mitsubishi Electric Iconics DigiEPSS 0.3%CVE-2022-33317HIGHInclusion of Functionality from Untrusted Control Sphere vulnerability in Mitsubishi Electric GENESIS64 versions 10.97 to 10.97.1, MitsubishEPSS 0.3%