Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU all versions allows a remote unauthenticated malicious user to acquire legitimate user names registered in the module via brute-force attack on user names.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mitsubishielectric r08sfcpu_firmware |
||
mitsubishielectric r16sfcpu_firmware |
||
mitsubishielectric r32sfcpu_firmware |
||
mitsubishielectric r120sfcpu_firmware |
||
mitsubishielectric r08psfcpu_firmware |
||
mitsubishielectric r16psfcpu_firmware |
||
mitsubishielectric r32psfcpu_firmware |
||
mitsubishielectric r120psfcpu_firmware |