CVE-2020-14496
Mitsubishi Electric Multiple Factory Automation Engineering Software Products (Update A) - Permission Issues
Successful exploitation of this vulnerability for multiple Mitsubishi Electric Factory Automation Engineering Software Products of various versions could allow an attacker to escalate privilege and execute malicious programs, which could cause a denial-of-service condition, and allow information to be disclosed, tampered with, and/or destroyed.
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
Productos afectados
Mitsubishi Electric · CPU Module Logging Configuration ToolMitsubishi Electric · CW ConfiguratorMitsubishi Electric · Data TransferMitsubishi Electric · EZSocketMitsubishi Electric · FR Configurator2Mitsubishi Electric · GT Designer3 Version1 (GOT2000)Mitsubishi Electric · GT SoftGOT1000 Version3Mitsubishi Electric · GT SoftGOT2000 Version1Mitsubishi Electric · GX LogViewerMitsubishi Electric · GX Works2Mitsubishi Electric · GX Works3Mitsubishi Electric · M_CommDTM-HARTMitsubishi Electric · M_CommDTM-IO-LinkMitsubishi Electric · MELFA-WorksMitsubishi Electric · MELSEC WinCPU Setting UtilityMitsubishi Electric · MELSOFT EM Software Development Kit (EM Configurator)Mitsubishi Electric · MELSOFT FieldDeviceConfiguratorMitsubishi Electric · MELSOFT NavigatorMitsubishi Electric · MH11 SettingTool Version2Mitsubishi Electric · MI ConfiguratorMitsubishi Electric · MotorizerMitsubishi Electric · MR Configurator2Mitsubishi Electric · MT Works2Mitsubishi Electric · MX ComponentMitsubishi Electric · Network Interface Board CC IE Control utilityMitsubishi Electric · Network Interface Board CC IE Field UtilityMitsubishi Electric · Network Interface Board CC-Link Ver.2 UtilityMitsubishi Electric · Network Interface Board MNETH utilityMitsubishi Electric · PX DeveloperMitsubishi Electric · RT ToolBox2Mitsubishi Electric · RT ToolBox3Mitsubishi Electric · Setting/monitoring tools for the C Controller module¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →