Mitsubishielectric: >> Melsoft Iq Appportal >> 1.17t Security Vulnerabilities
Malicious Code Execution Vulnerability due to External Control of File Name or Path in multiple Mitsubishi Electric FA Engineering Software Products allows a malicious attacker to execute a malicious code by having legitimate users open a specially crafted project file, which could result in information disclosure, tampering and deletion, or a denial-of-service (DoS) condition.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-11-30
Multiple Mitsubishi Electric Factory Automation engineering software products have a malicious code execution vulnerability. A malicious attacker could use this vulnerability to obtain information, modify information, and cause a denial-of-service condition.
CVSS Score
8.3
EPSS Score
0.001
Published
2022-02-11
Multiple Mitsubishi Electric Factory Automation products have a vulnerability that allows an attacker to execute arbitrary code.
CVSS Score
8.3
EPSS Score
0.013
Published
2022-02-11