Mitsubishielectric Gx Works3 — known CVE vulnerabilities
Every CVE whose affected-product data names Mitsubishielectric Gx Works3, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (33)
CVE-2023-6943 — CVSS 9.8 (critical): Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') vulnerability in Mitsubishi Electric Corporation…
CVE-2023-4088 — CVSS 9.3 (critical): Incorrect Default Permissions vulnerability in Mitsubishi Electric Corporation multiple FA engineering software products allows a malicious…
CVE-2022-29830 — CVSS 9.1 (critical): Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z, and Motion Control…
CVE-2022-25164 — CVSS 8.6 (high): Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Mitsubishi…
CVE-2020-14496 — CVSS 8.3 (high): Successful exploitation of this vulnerability for multiple Mitsubishi Electric Factory Automation Engineering Software Products of various…
CVE-2020-14521 — CVSS 8.3 (high): Multiple Mitsubishi Electric Factory Automation engineering software products have a malicious code execution vulnerability. A malicious…
CVE-2020-14523 — CVSS 8.3 (high): Multiple Mitsubishi Electric Factory Automation products have a vulnerability that allows an attacker to execute arbitrary code.
CVE-2024-26314 — CVSS 7.8 (high): Improper privilege management in Jungo WinDriver 6.0.0 through 16.1.0 allows local attackers to escalate privileges and execute arbitrary…
CVE-2023-51776 — CVSS 7.8 (high): Improper privilege management in Jungo WinDriver before 12.1.0 allows local attackers to escalate privileges and execute arbitrary code.
CVE-2023-5247 — CVSS 7.8 (high): Malicious Code Execution Vulnerability due to External Control of File Name or Path in multiple Mitsubishi Electric FA Engineering Software…
CVE-2024-22106 — CVSS 7.8 (high): Improper privilege management in Jungo WinDriver before 12.5.1 allows local attackers to escalate privileges, execute arbitrary code, or…
CVE-2024-25086 — CVSS 7.8 (high): Improper privilege management in Jungo WinDriver before 12.2.0 allows local attackers to escalate privileges and execute arbitrary code.
CVE-2024-25088 — CVSS 7.8 (high): Improper privilege management in Jungo WinDriver before 12.5.1 allows local attackers to escalate privileges and execute arbitrary code.
CVE-2021-20588 — CVSS 7.5 (high): Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric FA Engineering Software (CPU Module Logging…
CVE-2022-29831 — CVSS 7.5 (high): Use of Hard-coded Password vulnerability in Mitsubishi Electric Corporation GX Works3 versions from 1.015R to 1.095Z allows a remote…
CVE-2021-20587 — CVSS 7.5 (high): Heap-based buffer overflow vulnerability in Mitsubishi Electric FA Engineering Software (CPU Module Logging Configuration Tool versions…
CVE-2023-6942 — CVSS 7.5 (high): Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3…
CVE-2022-29828 — CVSS 6.8 (medium): Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote…
CVE-2022-29829 — CVSS 6.8 (medium): Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1…
CVE-2022-29827 — CVSS 6.8 (medium): Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote…
CVE-2022-29826 — CVSS 6.8 (medium): Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.087R and Motion Control…
CVE-2022-29833 — CVSS 6.8 (medium): Insufficiently Protected Credentials vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote…
CVE-2022-29825 — CVSS 5.6 (medium): Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 (GOT2000)…
CVE-2024-25087 — CVSS 5.5 (medium): Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.7.0 allows local attackers to cause a Windows blue screen error.
CVE-2023-51778 — CVSS 5.5 (medium): Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.1.0 allows local attackers to cause a Windows blue screen error and Denial…
CVE-2024-22102 — CVSS 5.5 (medium): Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to cause a Windows blue screen error.
CVE-2024-22103 — CVSS 5.5 (medium): Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to cause a Windows blue screen error and Denial…
CVE-2024-22104 — CVSS 5.5 (medium): Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to cause a Windows blue screen error and Denial…
CVE-2024-22105 — CVSS 5.5 (medium): Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to cause a Windows blue screen error.
CVE-2023-51777 — CVSS 5.5 (medium): Denial of Service (DoS) vulnerability in Jungo WinDriver before 12.1.0 allows local attackers to cause a Windows blue screen error.
CVE-2022-29832 — CVSS 3.7 (low): Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later…