Mitsubishi Electric Multiple Factory Automation Engineering Software Products (Update A) - Permission Issues
CVE-2020-14496

8.3HIGH

Key Information:

Vendor: Mitsubishi Electric
Status: Cpu Module Logging Configuration Tool; Cw Configurator; Data Transfer; Ezsocket
Vendor: CVE Published:; 19 May 2022

🔔 Create Mitsubishi Electric Vulnerability Alert

What is CVE-2020-14496?

Successful exploitation of this vulnerability for multiple Mitsubishi Electric Factory Automation Engineering Software Products of various versions could allow an attacker to escalate privilege and execute malicious programs, which could cause a denial-of-service condition, and allow information to be disclosed, tampered with, and/or destroyed.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

CPU Module Logging Configuration Tool All <= 1.100E

CW Configurator All <= 1.010L

Data Transfer All <= 3.40S

References

https://www.cisa.gov/uscert/ics/advisories/icsa-20-212-02

x_refsource_MISC

CVSS V3.1

Score:

8.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
May 19, 2022
Vulnerability Reserved
Jun 19, 2020

JSON