Vulnerabilities > Mitsubishielectric
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-28 | CVE-2019-14926 | Use of Hard-coded Credentials vulnerability in multiple products An issue was discovered on Mitsubishi Electric Europe B.V. | 9.8 |
| 2019-10-28 | CVE-2019-14925 | Incorrect Default Permissions vulnerability in multiple products An issue was discovered on Mitsubishi Electric Europe B.V. | 6.5 |
| 2019-07-26 | CVE-2019-10976 | XXE vulnerability in Mitsubishielectric Electric FR Configurator2 Firmware Mitsubishi Electric FR Configurator2, Version 1.16S and prior. | 4.3 |
| 2019-07-26 | CVE-2019-10972 | Resource Exhaustion vulnerability in Mitsubishielectric Electric FR Configurator2 Mitsubishi Electric FR Configurator2, Version 1.16S and prior. | 7.1 |
| 2019-05-23 | CVE-2019-10977 | Resource Exhaustion vulnerability in Mitsubishielectric Qj71E71-100 Firmware In Mitsubishi Electric MELSEC-Q series Ethernet module QJ71E71-100 serial number 20121 and prior, an attacker could send crafted TCP packets against the FTP service, forcing the target devices to enter an error mode and cause a denial-of-service condition. | 7.8 |
| 2019-02-05 | CVE-2019-6535 | Resource Exhaustion vulnerability in Mitsubishielectric products Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. | 7.5 |
| 2018-04-17 | CVE-2017-9638 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mitsubishielectric E-Designer 7.52 Mitsubishi E-Designer, Version 7.52 Build 344 contains six code sections which may be exploited to overwrite the stack. | 10.0 |
| 2018-04-17 | CVE-2017-9636 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Mitsubishielectric E-Designer 7.52 Mitsubishi E-Designer, Version 7.52 Build 344 contains five code sections which may be exploited to overwrite the heap. | 10.0 |
| 2018-04-17 | CVE-2017-9634 | Out-of-bounds Write vulnerability in Mitsubishielectric E-Designer 7.52 Mitsubishi E-Designer, Version 7.52 Build 344 contains two code sections which may be exploited to allow an attacker to overwrite arbitrary memory locations. | 10.0 |
| 2017-02-13 | CVE-2016-8370 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Mitsubishielectric products An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. | 5.0 |