Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-40264

Published: 14/12/2022 Updated: 16/12/2022
CVSS v3 Base Score: 7.1 | Impact Score: 5.2 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Genesis64

Vulnerability Summary

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ICONICS/Mitsubishi Electric GENESIS64 versions 10.96 to 10.97.2 allows an unauthenticated malicious user to create, tamper with or destroy arbitrary files by getting a legitimate user import a project package file crafted by the attacker.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

iconics genesis64

ICS Advisories

ICONICS and Mitsubishi Electric Products
Critical Infrastructure Sectors: Critical Manufacturing

References

CWE-22https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-014_en.pdfhttps://jvn.jp/vu/JVNVU95858406/index.htmlhttps://iconics.com/About/Security/CERThttps://www.cisa.gov/uscert/ics/advisories/icsa-22-347-01https://nvd.nist.govhttps://www.cisa.gov/uscert/ics/advisories/icsa-22-347-01https://www.zerodayinitiative.com/advisories/ZDI-23-342/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTICVE-2024-35863CVE-2024-35910man-in-the-middleCVE-2024-35912CVE-2024-25742LFICVE-2024-32002CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook