Search

Find a vulnerability

Search criteria

    8 vulnerabilities found for q03udecpu_firmware by mitsubishielectric

    CVE-2022-24946 (GCVE-0-2022-24946)

    Vulnerability from nvd – Published: 2022-06-15 20:18 – Updated: 2026-06-02 18:59
    VLAI
    Summary
    Improper Resource Locking vulnerability in Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions "16" and prior, Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. "24061" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. "24061" and prior, Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions, Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions, Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions, Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number "24051" and prior and Mitsubishi Electric MELIPC Series MI5122-VW firmware versions "05" and prior allows a remote unauthenticated attacker to cause a denial of service (DoS) condition in Ethernet communications by sending specially crafted packets. A system reset of the products is required for recovery.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Improper Resource Locking
    • CWE-413 - Improper Resource Locking
    Assigner
    Impacted products
    Vendor Product Version
    n/a Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V; Mitsubishi Electric MELSEC-Q Series Q03UDECPU; Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU; Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU; Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU; Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V; Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G); Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS; Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P); Mitsubishi Electric MELSEC-L series L26CPU-(P)BT; Mitsubishi Electric MELIPC Series MI5122-VW Affected: Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions "16" and prior
    Affected: Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. "24061" and prior
    Affected: Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. "24061" and prior
    Affected: Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number "24051" and prior
    Affected: Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number "24051" and prior
    Affected: Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions
    Affected: Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions
    Affected: Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions
    Affected: Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number "24051" and prior
    Affected: Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number "24051" and prior
    Affected: Mitsubishi Electric MELIPC Series MI5122-VW firmware versions "05" and prior
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:29:01.628Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-007_en.pdf"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://jvn.jp/vu/JVNVU90895626/index.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-172-01"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-24946",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T18:58:39.838636Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-413",
                    "description": "CWE-413 Improper Resource Locking",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-02T18:59:07.119Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V; Mitsubishi Electric MELSEC-Q Series Q03UDECPU; Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU; Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU; Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU; Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V; Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G); Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS; Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P); Mitsubishi Electric MELSEC-L series L26CPU-(P)BT; Mitsubishi Electric MELIPC Series MI5122-VW",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions \"16\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. \"24061\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. \"24061\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number \"24051\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number \"24051\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number \"24051\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number \"24051\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELIPC Series MI5122-VW firmware versions \"05\" and prior"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Improper Resource Locking vulnerability in Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions \"16\" and prior, Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. \"24061\" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. \"24061\" and prior, Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions, Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions, Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions, Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number \"24051\" and prior and Mitsubishi Electric MELIPC Series MI5122-VW firmware versions \"05\" and prior allows a remote unauthenticated attacker to cause a denial of service (DoS) condition in Ethernet communications by sending specially crafted packets. A system reset of the products is required for recovery."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Improper Resource Locking",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-08-19T22:41:30.000Z",
            "orgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad",
            "shortName": "Mitsubishi"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-007_en.pdf"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://jvn.jp/vu/JVNVU90895626/index.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-172-01"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp",
              "ID": "CVE-2022-24946",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V; Mitsubishi Electric MELSEC-Q Series Q03UDECPU; Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU; Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU; Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU; Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V; Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G); Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS; Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P); Mitsubishi Electric MELSEC-L series L26CPU-(P)BT; Mitsubishi Electric MELIPC Series MI5122-VW",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions \"16\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. \"24061\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. \"24061\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number \"24051\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number \"24051\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number \"24051\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number \"24051\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELIPC Series MI5122-VW firmware versions \"05\" and prior"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Improper Resource Locking vulnerability in Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions \"16\" and prior, Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. \"24061\" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. \"24061\" and prior, Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions, Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions, Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions, Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number \"24051\" and prior and Mitsubishi Electric MELIPC Series MI5122-VW firmware versions \"05\" and prior allows a remote unauthenticated attacker to cause a denial of service (DoS) condition in Ethernet communications by sending specially crafted packets. A system reset of the products is required for recovery."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Improper Resource Locking"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-007_en.pdf",
                  "refsource": "MISC",
                  "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-007_en.pdf"
                },
                {
                  "name": "https://jvn.jp/vu/JVNVU90895626/index.html",
                  "refsource": "MISC",
                  "url": "https://jvn.jp/vu/JVNVU90895626/index.html"
                },
                {
                  "name": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-172-01",
                  "refsource": "MISC",
                  "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-172-01"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad",
        "assignerShortName": "Mitsubishi",
        "cveId": "CVE-2022-24946",
        "datePublished": "2022-06-15T20:18:35.000Z",
        "dateReserved": "2022-02-10T00:00:00.000Z",
        "dateUpdated": "2026-06-02T18:59:07.119Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2020-16226 (GCVE-0-2020-16226)

    Vulnerability from nvd – Published: 2020-10-05 17:19 – Updated: 2024-09-17 00:25
    VLAI
    Title
    Mitsubishi Electric Multiple Products
    Summary
    Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands.
    Severity
    No CVSS data available.
    CWE
    • CWE-342 - PREDICTABLE EXACT VALUE FROM PREVIOUS VALUES CWE-342
    Assigner
    References
    Impacted products
    Vendor Product Version
    Mitsubishi Electric QJ71MES96 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric QJ71WS96 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric Q06CCPU-V Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric Q24DHCCPU-V Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric Q24DHCCPU-VG Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric R12CCPU-V Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RD55UP06-V, Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric D55UP12-V Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RJ71GN11-T2 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RJ71EN71 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric QJ71E71-100 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric LJ71E71-100 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric QJ71MT91 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RD78Gn(n=4,8,16,32,64) Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RD78GHV Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RD78GHW Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric NZ2GACP620-60 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric NZ2GACP620-300 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric NZ2FT-MT Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric NZ2FT-EIP Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric Q03UDECPU Affected: the first 5 digits of serial number 22081 and prior
    Create a notification for this product.
    Mitsubishi Electric QnUDEHCPU(n=04/06/10/13/20/26/50/100) Affected: the first 5 digits of serial number 22081 and prior
    Create a notification for this product.
    Mitsubishi Electric QnUDVCPU(n=03/04/06/13/26) Affected: the first 5 digits of serial number 22031 and prior
    Create a notification for this product.
    Mitsubishi Electric QnUDPVCPU(n=04/06/13/2) Affected: the first 5 digits of serial number 22031 and prior
    Create a notification for this product.
    Mitsubishi Electric LnCPU(-P)(n=02/06/26) Affected: the first 5 digits of serial number 22051 and prior
    Create a notification for this product.
    Mitsubishi Electric L26CPU-(P)BT Affected: the first 5 digits of serial number 22051 and prior
    Create a notification for this product.
    Mitsubishi Electric RnCPU(n=00/01/02) Affected: unspecified , < Version 18 and prior (custom)
    Create a notification for this product.
    Mitsubishi Electric RnCPU(n=04/08/16/32/120) Affected: unspecified , < Version 50 and prior (custom)
    Create a notification for this product.
    Mitsubishi Electric RnENCPU(n=04/08/16/32/120) Affected: unspecified , < Version 50 and prior (custom)
    Create a notification for this product.
    Mitsubishi Electric RnSFCPU (n=08/16/32/120) Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RnPCPU(n=08/16/32/120) Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RnPSFCPU(n=08/16/32/120) Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX5U(C)-**M*/** Affected: unspecified , < Serial number 17X**** or later: Version 1.210 and prior (custom)
    Affected: unspecified , < Serial number 179**** and prior: Version 1.070 and prior (custom)
    Create a notification for this product.
    Mitsubishi Electric FX5UC-32M*/**-TS Affected: unspecified , < Version 1.210 and prior (custom)
    Create a notification for this product.
    Mitsubishi Electric FX5UJ-**M*/** Affected: Version 1.000
    Create a notification for this product.
    Mitsubishi Electric FX5-ENET Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX5-ENET/IP Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX3U-ENET-ADP Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX3GE-**M*/** Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX3U-ENET Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX3U-ENET-L Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX3U-ENET-P502 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX5-CCLGN-MS Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric IU1-1M20-D Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric LE7-40GU-L Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric GOT2000 Series GT21 Model Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric GS Series Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric GOT1000 Series GT14 Model Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric GT25-J71GN13-T2 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FR-A800-E Series Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FR-F800-E Series Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FR-A8NCG Affected: Production date August 2020 and prior
    Create a notification for this product.
    Mitsubishi Electric FR-E800-EPA Series Affected: Production date July 2020 and prior
    Create a notification for this product.
    Mitsubishi Electric FR-E800-EPB Series Affected: Production date July 2020 and prior
    Create a notification for this product.
    Mitsubishi Electric Conveyor Tracking Application Affected: APR-nTR3FH all versions
    Affected: APR-nTR6FH all versions
    Affected: APR-nTR12FH all versions
    Affected: APR-nTR20FH(n=1,2) all versions
    Create a notification for this product.
    Mitsubishi Electric MR-JE-C Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric MR-J4-TM Affected: all versions
    Create a notification for this product.
    Date Public
    2020-09-01 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T13:37:54.189Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-245-01"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "QJ71MES96",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "QJ71WS96",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "Q06CCPU-V",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "Q24DHCCPU-V",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "Q24DHCCPU-VG",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "R12CCPU-V",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RD55UP06-V,",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "D55UP12-V",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RJ71GN11-T2",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RJ71EN71",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "QJ71E71-100",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "LJ71E71-100",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "QJ71MT91",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RD78Gn(n=4,8,16,32,64)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RD78GHV",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RD78GHW",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "NZ2GACP620-60",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "NZ2GACP620-300",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "NZ2FT-MT",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "NZ2FT-EIP",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "Q03UDECPU",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22081 and prior"
                }
              ]
            },
            {
              "product": "QnUDEHCPU(n=04/06/10/13/20/26/50/100)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22081 and prior"
                }
              ]
            },
            {
              "product": "QnUDVCPU(n=03/04/06/13/26)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22031 and prior"
                }
              ]
            },
            {
              "product": "QnUDPVCPU(n=04/06/13/2)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22031 and prior"
                }
              ]
            },
            {
              "product": "LnCPU(-P)(n=02/06/26)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22051 and prior"
                }
              ]
            },
            {
              "product": "L26CPU-(P)BT",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22051 and prior"
                }
              ]
            },
            {
              "product": "RnCPU(n=00/01/02)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThan": "Version 18 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "RnCPU(n=04/08/16/32/120)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThan": "Version 50 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "RnENCPU(n=04/08/16/32/120)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThan": "Version 50 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "RnSFCPU (n=08/16/32/120)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RnPCPU(n=08/16/32/120)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RnPSFCPU(n=08/16/32/120)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX5U(C)-**M*/**",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThan": "Serial number 17X**** or later: Version 1.210 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "Serial number 179**** and prior: Version 1.070 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "FX5UC-32M*/**-TS",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThan": "Version 1.210 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "FX5UJ-**M*/**",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "Version 1.000"
                }
              ]
            },
            {
              "product": "FX5-ENET",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX5-ENET/IP",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX3U-ENET-ADP",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX3GE-**M*/**",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX3U-ENET",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX3U-ENET-L",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX3U-ENET-P502",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX5-CCLGN-MS",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "IU1-1M20-D",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "LE7-40GU-L",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "GOT2000 Series GT21 Model",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "GS Series",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "GOT1000 Series GT14 Model",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "GT25-J71GN13-T2",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FR-A800-E Series",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FR-F800-E Series",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FR-A8NCG",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "Production date August 2020 and prior"
                }
              ]
            },
            {
              "product": "FR-E800-EPA Series",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "Production date July 2020 and prior"
                }
              ]
            },
            {
              "product": "FR-E800-EPB Series",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "Production date July 2020 and prior"
                }
              ]
            },
            {
              "product": "Conveyor Tracking Application",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "APR-nTR3FH all versions"
                },
                {
                  "status": "affected",
                  "version": "APR-nTR6FH all versions"
                },
                {
                  "status": "affected",
                  "version": "APR-nTR12FH all versions"
                },
                {
                  "status": "affected",
                  "version": "APR-nTR20FH(n=1,2) all versions"
                }
              ]
            },
            {
              "product": "MR-JE-C",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "MR-J4-TM",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            }
          ],
          "datePublic": "2020-09-01T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-342",
                  "description": "PREDICTABLE EXACT VALUE FROM PREVIOUS VALUES CWE-342",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-10-05T17:19:17.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-245-01"
            }
          ],
          "source": {
            "advisory": "ICSA-20-245-01",
            "discovery": "UNKNOWN"
          },
          "title": "Mitsubishi Electric Multiple Products",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "DATE_PUBLIC": "2020-09-01T16:00:00.000Z",
              "ID": "CVE-2020-16226",
              "STATE": "PUBLIC",
              "TITLE": "Mitsubishi Electric Multiple Products"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "QJ71MES96",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QJ71WS96",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Q06CCPU-V",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Q24DHCCPU-V",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Q24DHCCPU-VG",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "R12CCPU-V",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RD55UP06-V,",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "D55UP12-V",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RJ71GN11-T2",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RJ71EN71",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QJ71E71-100",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "LJ71E71-100",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QJ71MT91",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RD78Gn(n=4,8,16,32,64)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RD78GHV",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RD78GHW",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "NZ2GACP620-60",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "NZ2GACP620-300",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "NZ2FT-MT",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "NZ2FT-EIP",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Q03UDECPU",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22081 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QnUDEHCPU(n=04/06/10/13/20/26/50/100)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22081 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QnUDVCPU(n=03/04/06/13/26)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22031 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QnUDPVCPU(n=04/06/13/2)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22031 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "LnCPU(-P)(n=02/06/26)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22051 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "L26CPU-(P)BT",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22051 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnCPU(n=00/01/02)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "Version 18 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnCPU(n=04/08/16/32/120)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "Version 50 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnENCPU(n=04/08/16/32/120)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "Version 50 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnSFCPU (n=08/16/32/120)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnPCPU(n=08/16/32/120)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnPSFCPU(n=08/16/32/120)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5U(C)-**M*/**",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "Serial number 17X**** or later: Version 1.210 and prior"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "Serial number 179**** and prior: Version 1.070 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5UC-32M*/**-TS",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "Version 1.210 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5UJ-**M*/**",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "Version 1.000"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5-ENET",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5-ENET/IP",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX3U-ENET-ADP",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX3GE-**M*/**",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX3U-ENET",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX3U-ENET-L",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX3U-ENET-P502",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5-CCLGN-MS",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "IU1-1M20-D",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "LE7-40GU-L",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "GOT2000 Series GT21 Model",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "GS Series",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "GOT1000 Series GT14 Model",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "GT25-J71GN13-T2",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FR-A800-E Series",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FR-F800-E Series",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FR-A8NCG",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "Production date August 2020 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FR-E800-EPA Series",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "Production date July 2020 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FR-E800-EPB Series",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "Production date July 2020 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Conveyor Tracking Application",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_name": "APR-nTR3FH",
                                "version_value": "all versions"
                              },
                              {
                                "version_affected": "=",
                                "version_name": "APR-nTR6FH",
                                "version_value": "all versions"
                              },
                              {
                                "version_affected": "=",
                                "version_name": "APR-nTR12FH",
                                "version_value": "all versions"
                              },
                              {
                                "version_affected": "=",
                                "version_name": "APR-nTR20FH(n=1,2)",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "MR-JE-C",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "MR-J4-TM",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Mitsubishi Electric"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "PREDICTABLE EXACT VALUE FROM PREVIOUS VALUES CWE-342"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://us-cert.cisa.gov/ics/advisories/icsa-20-245-01",
                  "refsource": "MISC",
                  "url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-245-01"
                }
              ]
            },
            "source": {
              "advisory": "ICSA-20-245-01",
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2020-16226",
        "datePublished": "2020-10-05T17:19:17.358Z",
        "dateReserved": "2020-07-31T00:00:00.000Z",
        "dateUpdated": "2024-09-17T00:25:38.551Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-13555 (GCVE-0-2019-13555)

    Vulnerability from nvd – Published: 2019-11-13 22:27 – Updated: 2024-08-04 23:57
    VLAI
    Summary
    In Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior, MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior, a remote attacker can cause the FTP service to enter a denial-of-service condition dependent on the timing at which a remote attacker connects to the FTP server on the above CPU modules.
    Severity
    No CVSS data available.
    CWE
    • Denial of Service
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior. Affected: Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T23:57:39.411Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.us-cert.gov/ics/advisories/icsa-19-311-01"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior.",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior."
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior, MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior, a remote attacker can cause the FTP service to enter a denial-of-service condition dependent on the timing at which a remote attacker connects to the FTP server on the above CPU modules."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-11-13T22:27:22.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.us-cert.gov/ics/advisories/icsa-19-311-01"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "ID": "CVE-2019-13555",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior.",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior."
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior, MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior, a remote attacker can cause the FTP service to enter a denial-of-service condition dependent on the timing at which a remote attacker connects to the FTP server on the above CPU modules."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Denial of Service"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.us-cert.gov/ics/advisories/icsa-19-311-01",
                  "refsource": "MISC",
                  "url": "https://www.us-cert.gov/ics/advisories/icsa-19-311-01"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2019-13555",
        "datePublished": "2019-11-13T22:27:22.000Z",
        "dateReserved": "2019-07-11T00:00:00.000Z",
        "dateUpdated": "2024-08-04T23:57:39.411Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-6535 (GCVE-0-2019-6535)

    Vulnerability from nvd – Published: 2019-02-05 19:00 – Updated: 2025-06-26 17:08
    VLAI
    Title
    Mitsubishi Electric MELSEC-Q Series PLCs Resource Exhaustion
    Summary
    Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet stack crash and disruption to USB communication.
    CWE
    Assigner
    References
    Impacted products
    Date Public
    2019-01-29 07:00
    Credits
    Tri Quach of Amazon's Customer Fulfillment Technology Security (CFTS) group reported this vulnerability to the National Cybersecurity and Communications Integration Center (NCCIC).
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T20:23:21.974Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "106771",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/106771"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-19-029-02"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Q03/04/06/13/26UDVCPU",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThanOrEqual": "serial number 20081",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "Q04/06/13/26UDPVCPU",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThanOrEqual": "serial number 20081",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThanOrEqual": "serial number 20101",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Tri Quach of Amazon\u0027s Customer Fulfillment Technology Security (CFTS) group reported this vulnerability to the National Cybersecurity and Communications Integration Center (NCCIC)."
            }
          ],
          "datePublic": "2019-01-29T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003e\n\nMitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet stack crash and disruption to USB communication.\n\n\u003c/p\u003e"
                }
              ],
              "value": "Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet stack crash and disruption to USB communication."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-06-26T17:08:15.995Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "name": "106771",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/106771"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-19-029-02"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eMitsubishi Electric has produced a new version of the firmware. Additional information about this vulnerability or Mitsubishi Electric\u0027s compensating control is available by contacting a local Mitsubishi Electric representative, which can be found at the following location: \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://us.mitsubishielectric.com/fa/en/about-us/distributors\"\u003ehttps://us.mitsubishielectric.com/fa/en/about-us/distributors\u003c/a\u003e\u003c/p\u003e\u003cp\u003eMitsubishi Electric strongly recommends users should operate the affected device behind a firewall.\u003c/p\u003e"
                }
              ],
              "value": "Mitsubishi Electric has produced a new version of the firmware. Additional information about this vulnerability or Mitsubishi Electric\u0027s compensating control is available by contacting a local Mitsubishi Electric representative, which can be found at the following location:  https://us.mitsubishielectric.com/fa/en/about-us/distributors \n\nMitsubishi Electric strongly recommends users should operate the affected device behind a firewall."
            }
          ],
          "source": {
            "advisory": "ICSA-19-029-02",
            "discovery": "EXTERNAL"
          },
          "title": "Mitsubishi Electric MELSEC-Q Series PLCs Resource Exhaustion",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "DATE_PUBLIC": "2019-01-29T00:00:00",
              "ID": "CVE-2019-6535",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior.",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior."
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "ICS-CERT"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet stack crash."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "UNCONTROLLED RESOURCE CONSUMPTION (\u0027RESOURCE EXHAUSTION\u0027) CWE-400"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "106771",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/106771"
                },
                {
                  "name": "https://ics-cert.us-cert.gov/advisories/ICSA-19-029-02",
                  "refsource": "MISC",
                  "url": "https://ics-cert.us-cert.gov/advisories/ICSA-19-029-02"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2019-6535",
        "datePublished": "2019-02-05T19:00:00.000Z",
        "dateReserved": "2019-01-22T00:00:00.000Z",
        "dateUpdated": "2025-06-26T17:08:15.995Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-24946 (GCVE-0-2022-24946)

    Vulnerability from cvelistv5 – Published: 2022-06-15 20:18 – Updated: 2026-06-02 18:59
    VLAI
    Summary
    Improper Resource Locking vulnerability in Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions "16" and prior, Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. "24061" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. "24061" and prior, Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions, Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions, Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions, Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number "24051" and prior, Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number "24051" and prior and Mitsubishi Electric MELIPC Series MI5122-VW firmware versions "05" and prior allows a remote unauthenticated attacker to cause a denial of service (DoS) condition in Ethernet communications by sending specially crafted packets. A system reset of the products is required for recovery.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Improper Resource Locking
    • CWE-413 - Improper Resource Locking
    Assigner
    Impacted products
    Vendor Product Version
    n/a Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V; Mitsubishi Electric MELSEC-Q Series Q03UDECPU; Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU; Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU; Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU; Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V; Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G); Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS; Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P); Mitsubishi Electric MELSEC-L series L26CPU-(P)BT; Mitsubishi Electric MELIPC Series MI5122-VW Affected: Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions "16" and prior
    Affected: Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. "24061" and prior
    Affected: Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. "24061" and prior
    Affected: Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number "24051" and prior
    Affected: Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number "24051" and prior
    Affected: Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions
    Affected: Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions
    Affected: Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions
    Affected: Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number "24051" and prior
    Affected: Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number "24051" and prior
    Affected: Mitsubishi Electric MELIPC Series MI5122-VW firmware versions "05" and prior
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:29:01.628Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-007_en.pdf"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://jvn.jp/vu/JVNVU90895626/index.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-172-01"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-24946",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T18:58:39.838636Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-413",
                    "description": "CWE-413 Improper Resource Locking",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-02T18:59:07.119Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V; Mitsubishi Electric MELSEC-Q Series Q03UDECPU; Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU; Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU; Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU; Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V; Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G); Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS; Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P); Mitsubishi Electric MELSEC-L series L26CPU-(P)BT; Mitsubishi Electric MELIPC Series MI5122-VW",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions \"16\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. \"24061\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. \"24061\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number \"24051\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number \"24051\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number \"24051\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number \"24051\" and prior"
                },
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELIPC Series MI5122-VW firmware versions \"05\" and prior"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Improper Resource Locking vulnerability in Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions \"16\" and prior, Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. \"24061\" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. \"24061\" and prior, Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions, Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions, Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions, Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number \"24051\" and prior and Mitsubishi Electric MELIPC Series MI5122-VW firmware versions \"05\" and prior allows a remote unauthenticated attacker to cause a denial of service (DoS) condition in Ethernet communications by sending specially crafted packets. A system reset of the products is required for recovery."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Improper Resource Locking",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-08-19T22:41:30.000Z",
            "orgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad",
            "shortName": "Mitsubishi"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-007_en.pdf"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://jvn.jp/vu/JVNVU90895626/index.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-172-01"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp",
              "ID": "CVE-2022-24946",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V; Mitsubishi Electric MELSEC-Q Series Q03UDECPU; Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU; Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU; Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU; Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V; Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G); Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS; Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P); Mitsubishi Electric MELSEC-L series L26CPU-(P)BT; Mitsubishi Electric MELIPC Series MI5122-VW",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions \"16\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. \"24061\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. \"24061\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number \"24051\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number \"24051\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number \"24051\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number \"24051\" and prior"
                              },
                              {
                                "version_value": "Mitsubishi Electric MELIPC Series MI5122-VW firmware versions \"05\" and prior"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Improper Resource Locking vulnerability in Mitsubishi Electric MELSEC iQ-R Series R12CCPU-V firmware versions \"16\" and prior, Mitsubishi Electric MELSEC-Q Series Q03UDECPU the first 5 digits of serial No. \"24061\" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/10/13/20/26/50/100UDEHCPU the first 5 digits of serial No. \"24061\" and prior, Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-Q Series Q04/06/13/26UDPVCPU the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-Q Series Q12DCCPU-V all versions, Mitsubishi Electric MELSEC-Q Series Q24DHCCPU-V(G) all versions, Mitsubishi Electric MELSEC-Q Series Q24/26DHCCPU-LS all versions, Mitsubishi Electric MELSEC-L series L02/06/26CPU(-P) the first 5 digits of serial number \"24051\" and prior, Mitsubishi Electric MELSEC-L series L26CPU-(P)BT the first 5 digits of serial number \"24051\" and prior and Mitsubishi Electric MELIPC Series MI5122-VW firmware versions \"05\" and prior allows a remote unauthenticated attacker to cause a denial of service (DoS) condition in Ethernet communications by sending specially crafted packets. A system reset of the products is required for recovery."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Improper Resource Locking"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-007_en.pdf",
                  "refsource": "MISC",
                  "url": "https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-007_en.pdf"
                },
                {
                  "name": "https://jvn.jp/vu/JVNVU90895626/index.html",
                  "refsource": "MISC",
                  "url": "https://jvn.jp/vu/JVNVU90895626/index.html"
                },
                {
                  "name": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-172-01",
                  "refsource": "MISC",
                  "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-172-01"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "e0f77b61-78fd-4786-b3fb-1ee347a748ad",
        "assignerShortName": "Mitsubishi",
        "cveId": "CVE-2022-24946",
        "datePublished": "2022-06-15T20:18:35.000Z",
        "dateReserved": "2022-02-10T00:00:00.000Z",
        "dateUpdated": "2026-06-02T18:59:07.119Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2020-16226 (GCVE-0-2020-16226)

    Vulnerability from cvelistv5 – Published: 2020-10-05 17:19 – Updated: 2024-09-17 00:25
    VLAI
    Title
    Mitsubishi Electric Multiple Products
    Summary
    Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands.
    Severity
    No CVSS data available.
    CWE
    • CWE-342 - PREDICTABLE EXACT VALUE FROM PREVIOUS VALUES CWE-342
    Assigner
    References
    Impacted products
    Vendor Product Version
    Mitsubishi Electric QJ71MES96 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric QJ71WS96 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric Q06CCPU-V Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric Q24DHCCPU-V Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric Q24DHCCPU-VG Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric R12CCPU-V Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RD55UP06-V, Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric D55UP12-V Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RJ71GN11-T2 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RJ71EN71 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric QJ71E71-100 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric LJ71E71-100 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric QJ71MT91 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RD78Gn(n=4,8,16,32,64) Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RD78GHV Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RD78GHW Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric NZ2GACP620-60 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric NZ2GACP620-300 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric NZ2FT-MT Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric NZ2FT-EIP Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric Q03UDECPU Affected: the first 5 digits of serial number 22081 and prior
    Create a notification for this product.
    Mitsubishi Electric QnUDEHCPU(n=04/06/10/13/20/26/50/100) Affected: the first 5 digits of serial number 22081 and prior
    Create a notification for this product.
    Mitsubishi Electric QnUDVCPU(n=03/04/06/13/26) Affected: the first 5 digits of serial number 22031 and prior
    Create a notification for this product.
    Mitsubishi Electric QnUDPVCPU(n=04/06/13/2) Affected: the first 5 digits of serial number 22031 and prior
    Create a notification for this product.
    Mitsubishi Electric LnCPU(-P)(n=02/06/26) Affected: the first 5 digits of serial number 22051 and prior
    Create a notification for this product.
    Mitsubishi Electric L26CPU-(P)BT Affected: the first 5 digits of serial number 22051 and prior
    Create a notification for this product.
    Mitsubishi Electric RnCPU(n=00/01/02) Affected: unspecified , < Version 18 and prior (custom)
    Create a notification for this product.
    Mitsubishi Electric RnCPU(n=04/08/16/32/120) Affected: unspecified , < Version 50 and prior (custom)
    Create a notification for this product.
    Mitsubishi Electric RnENCPU(n=04/08/16/32/120) Affected: unspecified , < Version 50 and prior (custom)
    Create a notification for this product.
    Mitsubishi Electric RnSFCPU (n=08/16/32/120) Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RnPCPU(n=08/16/32/120) Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric RnPSFCPU(n=08/16/32/120) Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX5U(C)-**M*/** Affected: unspecified , < Serial number 17X**** or later: Version 1.210 and prior (custom)
    Affected: unspecified , < Serial number 179**** and prior: Version 1.070 and prior (custom)
    Create a notification for this product.
    Mitsubishi Electric FX5UC-32M*/**-TS Affected: unspecified , < Version 1.210 and prior (custom)
    Create a notification for this product.
    Mitsubishi Electric FX5UJ-**M*/** Affected: Version 1.000
    Create a notification for this product.
    Mitsubishi Electric FX5-ENET Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX5-ENET/IP Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX3U-ENET-ADP Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX3GE-**M*/** Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX3U-ENET Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX3U-ENET-L Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX3U-ENET-P502 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FX5-CCLGN-MS Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric IU1-1M20-D Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric LE7-40GU-L Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric GOT2000 Series GT21 Model Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric GS Series Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric GOT1000 Series GT14 Model Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric GT25-J71GN13-T2 Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FR-A800-E Series Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FR-F800-E Series Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric FR-A8NCG Affected: Production date August 2020 and prior
    Create a notification for this product.
    Mitsubishi Electric FR-E800-EPA Series Affected: Production date July 2020 and prior
    Create a notification for this product.
    Mitsubishi Electric FR-E800-EPB Series Affected: Production date July 2020 and prior
    Create a notification for this product.
    Mitsubishi Electric Conveyor Tracking Application Affected: APR-nTR3FH all versions
    Affected: APR-nTR6FH all versions
    Affected: APR-nTR12FH all versions
    Affected: APR-nTR20FH(n=1,2) all versions
    Create a notification for this product.
    Mitsubishi Electric MR-JE-C Affected: all versions
    Create a notification for this product.
    Mitsubishi Electric MR-J4-TM Affected: all versions
    Create a notification for this product.
    Date Public
    2020-09-01 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T13:37:54.189Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-245-01"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "QJ71MES96",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "QJ71WS96",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "Q06CCPU-V",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "Q24DHCCPU-V",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "Q24DHCCPU-VG",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "R12CCPU-V",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RD55UP06-V,",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "D55UP12-V",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RJ71GN11-T2",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RJ71EN71",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "QJ71E71-100",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "LJ71E71-100",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "QJ71MT91",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RD78Gn(n=4,8,16,32,64)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RD78GHV",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RD78GHW",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "NZ2GACP620-60",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "NZ2GACP620-300",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "NZ2FT-MT",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "NZ2FT-EIP",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "Q03UDECPU",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22081 and prior"
                }
              ]
            },
            {
              "product": "QnUDEHCPU(n=04/06/10/13/20/26/50/100)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22081 and prior"
                }
              ]
            },
            {
              "product": "QnUDVCPU(n=03/04/06/13/26)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22031 and prior"
                }
              ]
            },
            {
              "product": "QnUDPVCPU(n=04/06/13/2)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22031 and prior"
                }
              ]
            },
            {
              "product": "LnCPU(-P)(n=02/06/26)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22051 and prior"
                }
              ]
            },
            {
              "product": "L26CPU-(P)BT",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "the first 5 digits of serial number 22051 and prior"
                }
              ]
            },
            {
              "product": "RnCPU(n=00/01/02)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThan": "Version 18 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "RnCPU(n=04/08/16/32/120)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThan": "Version 50 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "RnENCPU(n=04/08/16/32/120)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThan": "Version 50 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "RnSFCPU (n=08/16/32/120)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RnPCPU(n=08/16/32/120)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "RnPSFCPU(n=08/16/32/120)",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX5U(C)-**M*/**",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThan": "Serial number 17X**** or later: Version 1.210 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "Serial number 179**** and prior: Version 1.070 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "FX5UC-32M*/**-TS",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThan": "Version 1.210 and prior",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "FX5UJ-**M*/**",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "Version 1.000"
                }
              ]
            },
            {
              "product": "FX5-ENET",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX5-ENET/IP",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX3U-ENET-ADP",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX3GE-**M*/**",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX3U-ENET",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX3U-ENET-L",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX3U-ENET-P502",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FX5-CCLGN-MS",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "IU1-1M20-D",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "LE7-40GU-L",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "GOT2000 Series GT21 Model",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "GS Series",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "GOT1000 Series GT14 Model",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "GT25-J71GN13-T2",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FR-A800-E Series",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FR-F800-E Series",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "FR-A8NCG",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "Production date August 2020 and prior"
                }
              ]
            },
            {
              "product": "FR-E800-EPA Series",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "Production date July 2020 and prior"
                }
              ]
            },
            {
              "product": "FR-E800-EPB Series",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "Production date July 2020 and prior"
                }
              ]
            },
            {
              "product": "Conveyor Tracking Application",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "APR-nTR3FH all versions"
                },
                {
                  "status": "affected",
                  "version": "APR-nTR6FH all versions"
                },
                {
                  "status": "affected",
                  "version": "APR-nTR12FH all versions"
                },
                {
                  "status": "affected",
                  "version": "APR-nTR20FH(n=1,2) all versions"
                }
              ]
            },
            {
              "product": "MR-JE-C",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            },
            {
              "product": "MR-J4-TM",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "status": "affected",
                  "version": "all versions"
                }
              ]
            }
          ],
          "datePublic": "2020-09-01T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-342",
                  "description": "PREDICTABLE EXACT VALUE FROM PREVIOUS VALUES CWE-342",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-10-05T17:19:17.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-245-01"
            }
          ],
          "source": {
            "advisory": "ICSA-20-245-01",
            "discovery": "UNKNOWN"
          },
          "title": "Mitsubishi Electric Multiple Products",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "DATE_PUBLIC": "2020-09-01T16:00:00.000Z",
              "ID": "CVE-2020-16226",
              "STATE": "PUBLIC",
              "TITLE": "Mitsubishi Electric Multiple Products"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "QJ71MES96",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QJ71WS96",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Q06CCPU-V",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Q24DHCCPU-V",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Q24DHCCPU-VG",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "R12CCPU-V",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RD55UP06-V,",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "D55UP12-V",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RJ71GN11-T2",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RJ71EN71",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QJ71E71-100",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "LJ71E71-100",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QJ71MT91",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RD78Gn(n=4,8,16,32,64)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RD78GHV",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RD78GHW",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "NZ2GACP620-60",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "NZ2GACP620-300",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "NZ2FT-MT",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "NZ2FT-EIP",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Q03UDECPU",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22081 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QnUDEHCPU(n=04/06/10/13/20/26/50/100)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22081 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QnUDVCPU(n=03/04/06/13/26)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22031 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "QnUDPVCPU(n=04/06/13/2)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22031 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "LnCPU(-P)(n=02/06/26)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22051 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "L26CPU-(P)BT",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "the first 5 digits of serial number 22051 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnCPU(n=00/01/02)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "Version 18 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnCPU(n=04/08/16/32/120)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "Version 50 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnENCPU(n=04/08/16/32/120)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "Version 50 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnSFCPU (n=08/16/32/120)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnPCPU(n=08/16/32/120)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "RnPSFCPU(n=08/16/32/120)",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5U(C)-**M*/**",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "Serial number 17X**** or later: Version 1.210 and prior"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "Serial number 179**** and prior: Version 1.070 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5UC-32M*/**-TS",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "Version 1.210 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5UJ-**M*/**",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "Version 1.000"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5-ENET",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5-ENET/IP",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX3U-ENET-ADP",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX3GE-**M*/**",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX3U-ENET",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX3U-ENET-L",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX3U-ENET-P502",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FX5-CCLGN-MS",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "IU1-1M20-D",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "LE7-40GU-L",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "GOT2000 Series GT21 Model",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "GS Series",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "GOT1000 Series GT14 Model",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "GT25-J71GN13-T2",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FR-A800-E Series",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FR-F800-E Series",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FR-A8NCG",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "Production date August 2020 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FR-E800-EPA Series",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "Production date July 2020 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "FR-E800-EPB Series",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "Production date July 2020 and prior"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Conveyor Tracking Application",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_name": "APR-nTR3FH",
                                "version_value": "all versions"
                              },
                              {
                                "version_affected": "=",
                                "version_name": "APR-nTR6FH",
                                "version_value": "all versions"
                              },
                              {
                                "version_affected": "=",
                                "version_name": "APR-nTR12FH",
                                "version_value": "all versions"
                              },
                              {
                                "version_affected": "=",
                                "version_name": "APR-nTR20FH(n=1,2)",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "MR-JE-C",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "MR-J4-TM",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "all versions"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Mitsubishi Electric"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "PREDICTABLE EXACT VALUE FROM PREVIOUS VALUES CWE-342"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://us-cert.cisa.gov/ics/advisories/icsa-20-245-01",
                  "refsource": "MISC",
                  "url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-245-01"
                }
              ]
            },
            "source": {
              "advisory": "ICSA-20-245-01",
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2020-16226",
        "datePublished": "2020-10-05T17:19:17.358Z",
        "dateReserved": "2020-07-31T00:00:00.000Z",
        "dateUpdated": "2024-09-17T00:25:38.551Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-13555 (GCVE-0-2019-13555)

    Vulnerability from cvelistv5 – Published: 2019-11-13 22:27 – Updated: 2024-08-04 23:57
    VLAI
    Summary
    In Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior, MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior, a remote attacker can cause the FTP service to enter a denial-of-service condition dependent on the timing at which a remote attacker connects to the FTP server on the above CPU modules.
    Severity
    No CVSS data available.
    CWE
    • Denial of Service
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior. Affected: Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T23:57:39.411Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.us-cert.gov/ics/advisories/icsa-19-311-01"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior.",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior."
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior, MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior, a remote attacker can cause the FTP service to enter a denial-of-service condition dependent on the timing at which a remote attacker connects to the FTP server on the above CPU modules."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2019-11-13T22:27:22.000Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.us-cert.gov/ics/advisories/icsa-19-311-01"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "ID": "CVE-2019-13555",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior.",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior. MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior."
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "In Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior, MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior, L02/06/26CPU-P, L26CPU-PBT: serial number 21101 and prior, and L02/06/26CPU-CM, L26CPU-BT-CM: serial number 21101 and prior, a remote attacker can cause the FTP service to enter a denial-of-service condition dependent on the timing at which a remote attacker connects to the FTP server on the above CPU modules."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Denial of Service"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.us-cert.gov/ics/advisories/icsa-19-311-01",
                  "refsource": "MISC",
                  "url": "https://www.us-cert.gov/ics/advisories/icsa-19-311-01"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2019-13555",
        "datePublished": "2019-11-13T22:27:22.000Z",
        "dateReserved": "2019-07-11T00:00:00.000Z",
        "dateUpdated": "2024-08-04T23:57:39.411Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2019-6535 (GCVE-0-2019-6535)

    Vulnerability from cvelistv5 – Published: 2019-02-05 19:00 – Updated: 2025-06-26 17:08
    VLAI
    Title
    Mitsubishi Electric MELSEC-Q Series PLCs Resource Exhaustion
    Summary
    Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet stack crash and disruption to USB communication.
    CWE
    Assigner
    References
    Impacted products
    Date Public
    2019-01-29 07:00
    Credits
    Tri Quach of Amazon's Customer Fulfillment Technology Security (CFTS) group reported this vulnerability to the National Cybersecurity and Communications Integration Center (NCCIC).
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T20:23:21.974Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "106771",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/106771"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-19-029-02"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Q03/04/06/13/26UDVCPU",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThanOrEqual": "serial number 20081",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "Q04/06/13/26UDPVCPU",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThanOrEqual": "serial number 20081",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU",
              "vendor": "Mitsubishi Electric",
              "versions": [
                {
                  "lessThanOrEqual": "serial number 20101",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Tri Quach of Amazon\u0027s Customer Fulfillment Technology Security (CFTS) group reported this vulnerability to the National Cybersecurity and Communications Integration Center (NCCIC)."
            }
          ],
          "datePublic": "2019-01-29T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003e\n\nMitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet stack crash and disruption to USB communication.\n\n\u003c/p\u003e"
                }
              ],
              "value": "Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet stack crash and disruption to USB communication."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-06-26T17:08:15.995Z",
            "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
            "shortName": "icscert"
          },
          "references": [
            {
              "name": "106771",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/106771"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-19-029-02"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eMitsubishi Electric has produced a new version of the firmware. Additional information about this vulnerability or Mitsubishi Electric\u0027s compensating control is available by contacting a local Mitsubishi Electric representative, which can be found at the following location: \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://us.mitsubishielectric.com/fa/en/about-us/distributors\"\u003ehttps://us.mitsubishielectric.com/fa/en/about-us/distributors\u003c/a\u003e\u003c/p\u003e\u003cp\u003eMitsubishi Electric strongly recommends users should operate the affected device behind a firewall.\u003c/p\u003e"
                }
              ],
              "value": "Mitsubishi Electric has produced a new version of the firmware. Additional information about this vulnerability or Mitsubishi Electric\u0027s compensating control is available by contacting a local Mitsubishi Electric representative, which can be found at the following location:  https://us.mitsubishielectric.com/fa/en/about-us/distributors \n\nMitsubishi Electric strongly recommends users should operate the affected device behind a firewall."
            }
          ],
          "source": {
            "advisory": "ICSA-19-029-02",
            "discovery": "EXTERNAL"
          },
          "title": "Mitsubishi Electric MELSEC-Q Series PLCs Resource Exhaustion",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "ics-cert@hq.dhs.gov",
              "DATE_PUBLIC": "2019-01-29T00:00:00",
              "ID": "CVE-2019-6535",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior.",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior."
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "ICS-CERT"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial number 20081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 20101 and prior. A remote attacker can send specific bytes over Port 5007 that will result in an Ethernet stack crash."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "UNCONTROLLED RESOURCE CONSUMPTION (\u0027RESOURCE EXHAUSTION\u0027) CWE-400"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "106771",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/106771"
                },
                {
                  "name": "https://ics-cert.us-cert.gov/advisories/ICSA-19-029-02",
                  "refsource": "MISC",
                  "url": "https://ics-cert.us-cert.gov/advisories/ICSA-19-029-02"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6",
        "assignerShortName": "icscert",
        "cveId": "CVE-2019-6535",
        "datePublished": "2019-02-05T19:00:00.000Z",
        "dateReserved": "2019-01-22T00:00:00.000Z",
        "dateUpdated": "2025-06-26T17:08:15.995Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }