Vulnerabilities > Mitsubishielectric > Melsoft IQ Appportal > High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-30	CVE-2023-5247	Externally Controlled Reference to a Resource in Another Sphere vulnerability in Mitsubishielectric products Malicious Code Execution Vulnerability due to External Control of File Name or Path in multiple Mitsubishi Electric FA Engineering Software Products allows a malicious attacker to execute a malicious code by having legitimate users open a specially crafted project file, which could result in information disclosure, tampering and deletion, or a denial-of-service (DoS) condition. local low complexity mitsubishielectric CWE-610	7.8
2020-06-30	CVE-2020-5603	Resource Exhaustion vulnerability in Mitsubishielectric products Uncontrolled resource consumption vulnerability in Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. network low complexity mitsubishielectric CWE-400	7.5
2020-06-30	CVE-2020-5602	XXE vulnerability in Mitsubishielectric products Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. network low complexity mitsubishielectric CWE-611	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.