Successful exploitation of this vulnerability for multiple Mitsubishi Electric Factory Automation Engineering Software Products of various versions could allow an attacker to escalate privilege and execute malicious programs, which could cause a denial-of-service condition, and allow information to be disclosed, tampered with, and/or destroyed.
References
| Link | Resource |
|---|---|
| https://www.cisa.gov/uscert/ics/advisories/icsa-20-212-02 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
|
History
07 Jun 2022, 21:15
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:mitsubishielectric:melsoft_fielddeviceconfigurator:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:em_configurator:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:gt_designer3:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:mx_component:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:melsoft_navigator:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:network_interface_board_cc_ie_field_utility:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:motorizer:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:data_transfer:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:network_interface_board_cc-link_ver.2_utility:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:gt_softgot2000:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:network_interface_board_mneth_utility:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:gx_works2:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:px_developer:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:mh11_settingtool_version2:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:fr_configurator2:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:network_interface_board_cc_ie_control_utility:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:cw_configurator:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:m_commdtm-io-link:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:m_commdtm-hart:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:gx_works3:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:rt_toolbox2:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:gx_logviewer:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:mt_works2:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:rt_toolbox3:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:melfa-works:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:ezsocket:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:cpu_module_logging_configuration_tool:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:mr_configurator2:*:*:*:*:*:*:*:* cpe:2.3:a:mitsubishielectric:gt_softgot1000:*:*:*:*:*:*:*:* |
|
| CWE | NVD-CWE-noinfo | |
| References | (MISC) https://www.cisa.gov/uscert/ics/advisories/icsa-20-212-02 - Third Party Advisory, US Government Resource | |
| CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
19 May 2022, 18:32
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2022-05-19 18:15
Updated : 2024-02-04 22:29
NVD link : CVE-2020-14496
Mitre link : CVE-2020-14496
CVE.ORG link : CVE-2020-14496
JSON object : View
Products Affected
mitsubishielectric
- gt_softgot2000
- px_developer
- motorizer
- gx_works3
- cpu_module_logging_configuration_tool
- m_commdtm-io-link
- gt_softgot1000
- network_interface_board_cc_ie_control_utility
- network_interface_board_mneth_utility
- mr_configurator2
- ezsocket
- melsoft_fielddeviceconfigurator
- melsoft_navigator
- m_commdtm-hart
- mx_component
- gx_works2
- network_interface_board_cc_ie_field_utility
- melfa-works
- fr_configurator2
- mh11_settingtool_version2
- rt_toolbox3
- rt_toolbox2
- gt_designer3
- gx_logviewer
- cw_configurator
- data_transfer
- mt_works2
- em_configurator
- network_interface_board_cc-link_ver.2_utility
CWE