CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-33318

Deserialization of Untrusted Data vulnerability in ICONICS GENESIS64 versions 10.97.1 and prior and Mitsubishi Electric MC Works64 versions 4.04E (10.95.210.01) and prior allows a remote unauthenticated attacker to execute an arbitrary malicious code by sending specially crafted packets to the GENESIS64 server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.204

EPSS Ranking 95.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://jvn.jp/vu/JVNVU96480474/index.html
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-008_en.pdf
https://jvn.jp/vu/JVNVU96480474/index.html
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-008_en.pdf

Products affected by CVE-2022-33318

Iconics » Genesis64 » Version: 10.97

cpe:2.3:a:iconics:genesis64:10.97
Iconics » Genesis64 » Version: 10.97.1

cpe:2.3:a:iconics:genesis64:10.97.1
Mitsubishielectric » Mc Works64 » Version: N/A

cpe:2.3:a:mitsubishielectric:mc_works64:-
Mitsubishielectric » Mc Works64 » Version: 10.95.208.31

cpe:2.3:a:mitsubishielectric:mc_works64:10.95.208.31

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-33318

Products

Pricing

Contact Us