Vulnerabilities > Mitsubishielectric > Fx3G 60Mt ESS Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-11-06 CVE-2023-4699 Insufficient Verification of Data Authenticity vulnerability in Mitsubishielectric products
Insufficient Verification of Data Authenticity vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules and MELSEC iQ-F Series CPU modules allows a remote unauthenticated attacker to reset the memory of the products to factory default state and cause denial-of-service (DoS) condition on the products by sending specific packets.
network
low complexity
mitsubishielectric CWE-345
critical
9.1
2023-10-13 CVE-2023-4562 Improper Authentication vulnerability in Mitsubishielectric products
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending illegitimate messages.
network
low complexity
mitsubishielectric CWE-287
critical
9.1
2023-06-30 CVE-2023-2846 Authentication Bypass by Capture-replay vulnerability in Mitsubishielectric products
Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series main modules allows a remote unauthenticated attacker to cancel the password/keyword setting and login to the affected products by sending specially crafted packets.
network
low complexity
mitsubishielectric CWE-294
critical
9.1
2020-10-05 CVE-2020-16226 Predictable Exact Value from Previous Values vulnerability in Mitsubishielectric products
Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands.
network
low complexity
mitsubishielectric CWE-342
7.5