CVSS: 5.5EPSS: 0%CPEs: 43EXPL: 0CVE-2023-51777
https://notcve.org/view.php?id=CVE-2023-51777
02 Jul 2024 — Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.1.0 allows local attackers to cause a Windows blue screen error. Vulnerabilidad de denegación de servicio (DoS) en Jungo WinDriver anterior a 12.1.0 permite a atacantes locales provocar un error de pantalla azul de Windows. • https://jungo.com/windriver/versions •
CVSS: 5.5EPSS: 0%CPEs: 43EXPL: 0CVE-2023-51778
https://notcve.org/view.php?id=CVE-2023-51778
02 Jul 2024 — Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.1.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS). La vulnerabilidad de escritura fuera de los límites en Jungo WinDriver anterior a 12.1.0 permite a atacantes locales provocar un error de pantalla azul de Windows y denegación de servicio (DoS). • https://jungo.com/windriver/versions • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 3%CPEs: 10EXPL: 0CVE-2023-6943
https://notcve.org/view.php?id=CVE-2023-6943
30 Jan 2024 — Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 and later, FR Configurator2 all versions, GT Designer3 Version1(GOT1000) all versions, GT Designer3 Version1(GOT2000) all versions, GX Works2 versions 1.11M and later, GX Works3 all versions, MELSOFT Navigator versions 1.04E and later, MT Works2 all versions, MX Component versions 4.00A and later and MX OPC Server DA/UA all versions allows a remote unauthe... • https://jvn.jp/vu/JVNVU95103362 • CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2023-6942
https://notcve.org/view.php?id=CVE-2023-6942
30 Jan 2024 — Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 and later, FR Configurator2 all versions, GT Designer3 Version1(GOT1000) all versions, GT Designer3 Version1(GOT2000) all versions, GX Works2 versions 1.11M and later, GX Works3 all versions, MELSOFT Navigator versions 1.04E and later, MT Works2 all versions, MX Component versions 4.00A and later and MX OPC Server DA/UA all versions allows a remote unauthenticated attacker to bypass authentica... • https://jvn.jp/vu/JVNVU95103362 • CWE-306: Missing Authentication for Critical Function •
CVSS: 4.7EPSS: 0%CPEs: 1EXPL: 0CVE-2023-5275
https://notcve.org/view.php?id=CVE-2023-5275
21 Nov 2023 — Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to cause a denial-of-service (DoS) condition on the function by sending specially crafted packets. However, the attacker would need to send the packets from within the same personal computer where the function is running. Una vulnerabilidad de validación de entrada incorrecta en la función de simulación de GX Works2 permite a un atacante provocar una condición de Denegación de Servicio (DoS) en la función mediante... • https://jvn.jp/vu/JVNVU98760962/index.html • CWE-20: Improper Input Validation •
CVSS: 4.7EPSS: 0%CPEs: 1EXPL: 0CVE-2023-5274
https://notcve.org/view.php?id=CVE-2023-5274
21 Nov 2023 — Improper Input Validation vulnerability in simulation function of GX Works2 allows an attacker to cause a denial-of-service (DoS) condition on the function by sending specially crafted packets. However, the attacker would need to send the packets from within the same personal computer where the function is running. Una vulnerabilidad de validación de entrada incorrecta en la función de simulación de GX Works2 permite a un atacante provocar una condición de Denegación de Servicio (DoS) en la función mediante... • https://jvn.jp/vu/JVNVU98760962/index.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 0%CPEs: 29EXPL: 0CVE-2020-14496 – Mitsubishi Electric Multiple Factory Automation Engineering Software Products (Update A) - Permission Issues
https://notcve.org/view.php?id=CVE-2020-14496
19 May 2022 — Successful exploitation of this vulnerability for multiple Mitsubishi Electric Factory Automation Engineering Software Products of various versions could allow an attacker to escalate privilege and execute malicious programs, which could cause a denial-of-service condition, and allow information to be disclosed, tampered with, and/or destroyed. Una explotación con éxito de esta vulnerabilidad para múltiples Productos Mitsubishi Electric Factory Automation Engineering Software de varias versiones podría perm... • https://www.cisa.gov/uscert/ics/advisories/icsa-20-212-02 • CWE-275: Permission Issues •
CVSS: 9.8EPSS: 1%CPEs: 27EXPL: 0CVE-2020-14523 – Mitsubishi Electric Factory Automation Products Path Traversal
https://notcve.org/view.php?id=CVE-2020-14523
11 Feb 2022 — Multiple Mitsubishi Electric Factory Automation products have a vulnerability that allows an attacker to execute arbitrary code. diversos productos de Mitsubishi Electric Factory Automation presentan una vulnerabilidad que permite a un atacante ejecutar código arbitrario • https://jvn.jp/vu/JVNVU90224831 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 0%CPEs: 60EXPL: 0CVE-2020-14521 – Mitsubishi Electric Factory Automation Engineering Products Unquoted Search Path or Element
https://notcve.org/view.php?id=CVE-2020-14521
11 Feb 2022 — Multiple Mitsubishi Electric Factory Automation engineering software products have a malicious code execution vulnerability. A malicious attacker could use this vulnerability to obtain information, modify information, and cause a denial-of-service condition. diversos productos de software de ingeniería de Mitsubishi Electric Factory Automation presentan una vulnerabilidad de ejecución de código malicioso. Un atacante malicioso podría usar esta vulnerabilidad para obtener información, modificar información y... • https://www.cisa.gov/uscert/ics/advisories/icsa-20-212-04 • CWE-276: Incorrect Default Permissions CWE-428: Unquoted Search Path or Element •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-20607
https://notcve.org/view.php?id=CVE-2021-20607
17 Dec 2021 — Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition in the software by getting a user to open malicious project file specially crafted by an attacker. Una vulnerabilidad de desbordamiento de enteros en las versiones 1.606G y anteriores de Mitsubishi Electric GX Works2, en las versiones 2.84N y anteriores de ... • https://jvn.jp/vu/JVNVU93817405/index.html • CWE-191: Integer Underflow (Wrap or Wraparound) •