CVE-2020-12013
Published: Jul 16, 2020
Modified: Aug 4, 2024
Description
A specially crafted WCF client that interfaces to the may allow the execution of certain arbitrary SQL commands remotely. This affects: Mitsubishi Electric MC Works64 Version 4.02C (10.95.208.31) and earlier, all versions; Mitsubishi Electric MC Works32 Version 3.00A (9.50.255.02); ICONICS GenBroker64, Platform Services, Workbench, FrameWorX Server v10.96 and prior; ICONICS GenBroker32 v9.5 and prior.
| Vendor | Product | Versions |
|---|---|---|
Mitsubishi Electric | MC Works64 | affected Version 4.02C (10.95.208.31) and earlieraffected all versions |
Mitsubishi Electric | MC Works32 | affected Version 3.00A (9.50.255.02) |
ICONICS | GenBroker64, Platform Services, Workbench, FrameWorX Server | affected v10.96 and prior |
ICONICS | GenBroker32 | affected v9.5 and prior |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now