Описание
Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition in the software by getting a user to open malicious project file specially crafted by an attacker.
Ссылки
- PatchThird Party Advisory
- Third Party AdvisoryUS Government Resource
- PatchVendor Advisory
- PatchThird Party Advisory
- Third Party AdvisoryUS Government Resource
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.4 (включая)Версия до 1.606g (включая)
Одно из
cpe:2.3:a:mitsubishielectric:ezsocket:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_works2:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:melsoft_navigator:*:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00151
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-191
Связанные уязвимости
CVSS3: 5.5
github
около 4 лет назад
Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, MELSOFT Navigator all versions and EZSocket all versions allows an attacker to cause a DoS condition in the software by getting a user to open malicious project file specially crafted by an attacker.
EPSS
Процентиль: 36%
0.00151
Низкий
5.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-191