Vulnerabilities > Mitsubishielectric > Fx3U 128Mt ES Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-10-13 CVE-2023-4562 Improper Authentication vulnerability in Mitsubishielectric products
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending illegitimate messages.
network
low complexity
mitsubishielectric CWE-287
critical
9.1
2023-06-30 CVE-2023-2846 Authentication Bypass by Capture-replay vulnerability in Mitsubishielectric products
Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series main modules allows a remote unauthenticated attacker to cancel the password/keyword setting and login to the affected products by sending specially crafted packets.
network
low complexity
mitsubishielectric CWE-294
critical
9.1