Описание
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. Weakly encrypted passwords are transmitted to a MELSEC-Q PLC.
Ссылки
- Third Party AdvisoryVDB Entry
- MitigationThird Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- MitigationThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:mitsubishielectric:qj71e71-100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:qj71e71-100:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:mitsubishielectric:qj71e71-b5_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:qj71e71-b5:-:*:*:*:*:*:*:*
Конфигурация 3
Одновременно
cpe:2.3:o:mitsubishielectric:qj71e71-b2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:qj71e71-b2:-:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00183
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-327
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. Weakly encrypted passwords are transmitted to a MELSEC-Q PLC.
EPSS
Процентиль: 40%
0.00183
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-327