Vulnerabilities > Mitsubishielectric > Melsoft IQ Appportal > High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-30	CVE-2023-5247	Externally Controlled Reference to a Resource in Another Sphere vulnerability in Mitsubishielectric products Malicious Code Execution Vulnerability due to External Control of File Name or Path in multiple Mitsubishi Electric FA Engineering Software Products allows a malicious attacker to execute a malicious code by having legitimate users open a specially crafted project file, which could result in information disclosure, tampering and deletion, or a denial-of-service (DoS) condition. local low complexity mitsubishielectric CWE-610	7.8
2022-02-11	CVE-2020-14523	Path Traversal vulnerability in Mitsubishielectric products Multiple Mitsubishi Electric Factory Automation products have a vulnerability that allows an attacker to execute arbitrary code. network low complexity mitsubishielectric CWE-22	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.