CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2062

Missing Password Field Masking vulnerability in Mitsubishi Electric Corporation EtherNet/IP configuration tools SW1DNN-EIPCT-BD and SW1DNN-EIPCTFX5-BD allows a remote unauthenticated attacker to know the password for MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP. This vulnerability results in authentication bypass vulnerability, which allows the attacker to access MELSEC iQ-R Series EtherNet/IP module RJ71EIP91 and MELSEC iQ-F Series EtherNet/IP module FX5-ENET/IP via FTP.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 13.6%

CVSS Severity

CVSS v3 Score 6.2

References

Products affected by CVE-2023-2062

Mitsubishielectric » Fx5-Enet/ip » Version: N/A

cpe:2.3:h:mitsubishielectric:fx5-enet/ip:-
Mitsubishielectric » Rj71eip91 » Version: N/A

cpe:2.3:h:mitsubishielectric:rj71eip91:-
Mitsubishielectric » Sw1dnn-Eipct-Bd » Version: N/A

cpe:2.3:h:mitsubishielectric:sw1dnn-eipct-bd:-
Mitsubishielectric » Sw1dnn-Eipctfx5-Bd » Version: N/A

cpe:2.3:h:mitsubishielectric:sw1dnn-eipctfx5-bd:-
Mitsubishielectric » Fx5-Enet/ip Firmware » Version: N/A

cpe:2.3:o:mitsubishielectric:fx5-enet/ip_firmware:-
Mitsubishielectric » Rj71eip91 Firmware » Version: N/A

cpe:2.3:o:mitsubishielectric:rj71eip91_firmware:-
Mitsubishielectric » Sw1dnn-Eipct-Bd Firmware » Version: N/A

cpe:2.3:o:mitsubishielectric:sw1dnn-eipct-bd_firmware:-
Mitsubishielectric » Sw1dnn-Eipctfx5-Bd Firmware » Version: N/A

cpe:2.3:o:mitsubishielectric:sw1dnn-eipctfx5-bd_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2062

Products

Pricing

Contact Us