CVE-2020-14496
Published: May 19, 2022
Modified: Apr 16, 2025
CVSS v3.1
8.3
Description
Successful exploitation of this vulnerability for multiple Mitsubishi Electric Factory Automation Engineering Software Products of various versions could allow an attacker to escalate privilege and execute malicious programs, which could cause a denial-of-service condition, and allow information to be disclosed, tampered with, and/or destroyed.
| Vendor | Product | Versions |
|---|---|---|
Mitsubishi Electric | CPU Module Logging Configuration Tool | affected All - <= 1.100E |
Mitsubishi Electric | CW Configurator | affected All - <= 1.010L |
Mitsubishi Electric | Data Transfer | affected All - <= 3.40S |
Mitsubishi Electric | EZSocket | affected All - <= 4.5 |
Mitsubishi Electric | FR Configurator2 | affected All - <= 1.22Y |
Mitsubishi Electric | GT Designer3 Version1 (GOT2000) | affected All - <= 1.235V |
Mitsubishi Electric | GT SoftGOT1000 Version3 | affected All - <= 3.200J |
Mitsubishi Electric | GT SoftGOT1000 Version3 | affected All |
Mitsubishi Electric | GT SoftGOT2000 Version1 | affected All - <= 1.235V |
Mitsubishi Electric | GX LogViewer | affected All - <= 1.100E |
Mitsubishi Electric | GX Works2 | affected All - <= 1.592S |
Mitsubishi Electric | GX Works3 | affected All - <= 1.063R |
Mitsubishi Electric | M_CommDTM-HART | affected All 1.00A |
Mitsubishi Electric | M_CommDTM-IO-Link | affected All |
Mitsubishi Electric | MELFA-Works | affected All - <= 4.3 |
Mitsubishi Electric | MELSEC WinCPU Setting Utility | affected All |
Mitsubishi Electric | MELSOFT EM Software Development Kit (EM Configurator) | affected All - <= 1.010L |
Mitsubishi Electric | MELSOFT FieldDeviceConfigurator | affected All - <= 1.03D |
Mitsubishi Electric | MELSOFT Navigator | affected All - <= 2.62Q |
Mitsubishi Electric | MH11 SettingTool Version2 | affected All - <= 2.002C |
Mitsubishi Electric | MI Configurator | affected All |
Mitsubishi Electric | Motorizer | affected All - <= 1.005F |
Mitsubishi Electric | MR Configurator2 | affected All - <= 1.105K |
Mitsubishi Electric | MT Works2 | affected All - <= 1.156N |
Mitsubishi Electric | MX Component | affected All - <= 4.19V |
Mitsubishi Electric | Network Interface Board CC IE Control utility | affected All |
Mitsubishi Electric | Network Interface Board CC IE Field Utility | affected All |
Mitsubishi Electric | Network Interface Board CC-Link Ver.2 Utility | affected All |
Mitsubishi Electric | Network Interface Board MNETH utility | affected All |
Mitsubishi Electric | PX Developer | affected All - <= 1.52E |
Mitsubishi Electric | RT ToolBox2 | affected All - <= 3.72A |
Mitsubishi Electric | RT ToolBox3 | affected All - <= 1.70Y |
Mitsubishi Electric | Setting/monitoring tools for the C Controller module | affected All |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now