MELSOFT Navigator

CVEs (8)

CVE	Vendor / Product	Risk	CVSS	EPSS	Published	Description
CVE-2021-20587	Oracle Corporation Configurator	0.01	—	0.12	Feb 19, 2021	Heap-based buffer overflow vulnerability in Mitsubishi Electric FA Engineering Software (CPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versions 1.011M and prior, Data Transfer versions 3.44W and prior, EZSocket versions 5.4 and prior, FR…
CVE-2023-6943	Mitsubishielectric GT Designer3 Version1	0.00	—	0.04	Jan 30, 2024	Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1(GOT1000) versions 1.325P and prior, GT Designer3 Version1(GOT2000) versions 1.320J and prior,…
CVE-2023-6942	Mitsubishielectric GT Designer3 Version1	0.00	—	0.00	Jan 30, 2024	Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1(GOT1000) versions 1.325P and prior, GT Designer3 Version1(GOT2000) versions 1.320J and prior, GX Works2 versions 1.11M to 1.626C, GX…
CVE-2023-5247	Mitsubishielectric GX Works2	0.00	—	0.00	Nov 30, 2023	Malicious Code Execution Vulnerability due to External Control of File Name or Path in multiple Mitsubishi Electric FA Engineering Software Products allows a malicious attacker to execute a malicious code by having legitimate users open a specially crafted project file, which…
CVE-2023-4088	Mitsubishielectric GT Designer3 Version1	0.00	—	0.00	Sep 20, 2023	Incorrect Default Permissions vulnerability in Mitsubishi Electric Corporation multiple FA engineering software products allows a malicious local attacker to execute a malicious code, resulting in information disclosure, tampering with and deletion, or a denial-of-service (DoS)…
CVE-2021-20607	Mitsubishielectric GX Works2	0.00	—	0.00	Dec 17, 2021	Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition in the software by…
CVE-2021-20606	Mitsubishielectric GX Works2	0.00	—	0.00	Dec 17, 2021	Out-of-bounds Read vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition in the software by…
CVE-2021-20588	Mitsubishielectric GT Designer3 Version1	0.00	—	0.01	Feb 19, 2021	Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric FA Engineering Software (CPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versions 1.011M and prior, Data Transfer versions 3.44W and prior, EZSocket versions…

CVE-2021-20587Feb 19, 2021
Oracle Corporation
Configurator
risk 0.01cvss —epss 0.12
Heap-based buffer overflow vulnerability in Mitsubishi Electric FA Engineering Software (CPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versions 1.011M and prior, Data Transfer versions 3.44W and prior, EZSocket versions 5.4 and prior, FR…
CVE-2023-6943Jan 30, 2024
Mitsubishielectric
GT Designer3 Version1
risk 0.00cvss —epss 0.04
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1(GOT1000) versions 1.325P and prior, GT Designer3 Version1(GOT2000) versions 1.320J and prior,…
CVE-2023-6942Jan 30, 2024
Mitsubishielectric
GT Designer3 Version1
risk 0.00cvss —epss 0.00
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1(GOT1000) versions 1.325P and prior, GT Designer3 Version1(GOT2000) versions 1.320J and prior, GX Works2 versions 1.11M to 1.626C, GX…
CVE-2023-5247Nov 30, 2023
Mitsubishielectric
GX Works2
risk 0.00cvss —epss 0.00
Malicious Code Execution Vulnerability due to External Control of File Name or Path in multiple Mitsubishi Electric FA Engineering Software Products allows a malicious attacker to execute a malicious code by having legitimate users open a specially crafted project file, which…
CVE-2023-4088Sep 20, 2023
Mitsubishielectric
GT Designer3 Version1
risk 0.00cvss —epss 0.00
Incorrect Default Permissions vulnerability in Mitsubishi Electric Corporation multiple FA engineering software products allows a malicious local attacker to execute a malicious code, resulting in information disclosure, tampering with and deletion, or a denial-of-service (DoS)…
CVE-2021-20607Dec 17, 2021
Mitsubishielectric
GX Works2
risk 0.00cvss —epss 0.00
Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition in the software by…
CVE-2021-20606Dec 17, 2021
Mitsubishielectric
GX Works2
risk 0.00cvss —epss 0.00
Out-of-bounds Read vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition in the software by…
CVE-2021-20588Feb 19, 2021
Mitsubishielectric
GT Designer3 Version1
risk 0.00cvss —epss 0.01
Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric FA Engineering Software (CPU Module Logging Configuration Tool versions 1.112R and prior, CW Configurator versions 1.011M and prior, Data Transfer versions 3.44W and prior, EZSocket versions…