CVE-2024-22106 | Mitsubishi Electric CPU Module Logging Configuration Tool privileges management (icsa-24-135-04)

A vulnerability classified as critical has been found in Mitsubishi Electric CPU Module Logging Configuration Tool, CSGL, CW Configurator, Data Transfer, Data Transfer Classic, EZSocket, FR Configurator SW3, FR Configurator2, GENESIS64, GT Designer3, GT SoftGOT1000, GT SoftGOT2000, GX Developer, GX LogViewer, GX Works2, GX Works3, iQ Works, MI Configurator, Numerical Control Device Communication Software, MR Configurator, MR Configurator2, MRZJW3-MC2-UTL, MX Component, MX OPC Server DA UA, PX Developer Monitor Tool, RT ToolBox3, RT VisualBox, Monitoring tools for the C Controller Module, SW0DNC-MNETH-B, SW1DNC-CCBD2-B, SW1DNC-CCIEF-J, SW1DNC-CCIEF-B, SW1DNC-MNETG-B, SW1DNC-QSCCF-B and SW1DND-EMSDK-B. This affects an unknown part. The manipulation leads to improper privilege management.

This vulnerability is uniquely identified as CVE-2024-22106. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-22106 | Mitsubishi Electric CPU Module Logging Configuration Tool privileges management (icsa-24-135-04)

Related Posts

CVE-2023-32969 | QNAP QuTScloud/QTS/QuTS hero Network/Virtual Switch cross site scripting (qsa-24-11)

CVE-2024-22302 | Ignazio Scimone Albo Pretorio On line Plugin up to 4.6.6 on WordPress cross site scripting

CVE-2024-2301 | HP LaserJet Pro Web Management Interface cross site scripting

CVE-2024-20806 | Samsung Mobile Devices Notification Service access control