Description
Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands.
References (1)
Core 1
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://us-cert.cisa.gov/ics/advisories/icsa-20-245-01
Scores
CVSS v3
9.8
EPSS
0.0048
EPSS Percentile
65.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-342
Status
published
Products (50)
mitsubishielectric/conveyor_tracking_application_apr-ntr12fh
mitsubishielectric/conveyor_tracking_application_apr-ntr20fh\(n\=1\,2\)
mitsubishielectric/conveyor_tracking_application_apr-ntr3fh
mitsubishielectric/conveyor_tracking_application_apr-ntr6fh
mitsubishielectric/fr-a820-e_firmware
mitsubishielectric/fr-a840-e_firmware
mitsubishielectric/fr-a842-e_firmware
mitsubishielectric/fr-a860-e_firmware
mitsubishielectric/fr-a862-e_firmware
mitsubishielectric/fr-a8ncge_firmware
< 2020-08
... and 40 more
Published
Oct 05, 2020
Tracked Since
Feb 18, 2026