CVE-2020-14496
HIGHMitsubishi Electric Factory Automation Engineering Software - Privi...
Title source: llmDescription
Successful exploitation of this vulnerability for multiple Mitsubishi Electric Factory Automation Engineering Software Products of various versions could allow an attacker to escalate privilege and execute malicious programs, which could cause a denial-of-service condition, and allow information to be disclosed, tampered with, and/or destroyed.
References (1)
Core 1
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://www.cisa.gov/uscert/ics/advisories/icsa-20-212-02
Scores
CVSS v3
8.3
EPSS
0.0013
EPSS Percentile
31.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-275
Status
published
Products (29)
mitsubishielectric/cpu_module_logging_configuration_tool
< 1.106k
mitsubishielectric/cw_configurator
< 1.011m
mitsubishielectric/data_transfer
< 3.41t
mitsubishielectric/em_configurator
< 1.015r
mitsubishielectric/ezsocket
< 4.6
mitsubishielectric/fr_configurator2
< 1.23z
mitsubishielectric/gt_designer3
< 1.236w
mitsubishielectric/gt_softgot1000
< 3.245f
mitsubishielectric/gt_softgot2000
< 1.236w
mitsubishielectric/gx_logviewer
< 1.106k
... and 19 more
Published
May 19, 2022
Tracked Since
Feb 18, 2026