CVE-2024-25086 | Mitsubishi Electric CPU Module Logging Configuration Tool privileges management (icsa-24-135-04)

A vulnerability classified as critical was found in Mitsubishi Electric CPU Module Logging Configuration Tool, CSGL, CW Configurator, Data Transfer, Data Transfer Classic, EZSocket, FR Configurator SW3, FR Configurator2, GENESIS64, GT Designer3, GT SoftGOT1000, GT SoftGOT2000, GX Developer, GX LogViewer, GX Works2, GX Works3, iQ Works, MI Configurator, Numerical Control Device Communication Software, MR Configurator, MR Configurator2, MRZJW3-MC2-UTL, MX Component, MX OPC Server DA UA, PX Developer Monitor Tool, RT ToolBox3, RT VisualBox, Monitoring tools for the C Controller Module, SW0DNC-MNETH-B, SW1DNC-CCBD2-B, SW1DNC-CCIEF-J, SW1DNC-CCIEF-B, SW1DNC-MNETG-B, SW1DNC-QSCCF-B and SW1DND-EMSDK-B. This vulnerability affects unknown code. The manipulation leads to improper privilege management.

This vulnerability was named CVE-2024-25086. The attack can be initiated remotely. There is no exploit available.

CVE-2024-25086 | Mitsubishi Electric CPU Module Logging Configuration Tool privileges management (icsa-24-135-04)

Related Posts

CVE-2023-42496 | Liferay Portal/DXP Add Assignees to a Role Page cross site scripting

CVE-2024-37151 | OISF Suricata up to 6.0.19/7.0.5 af-packet unusual condition (ID 7041)

CVE-2024-27959 | Wpexpertsio WC Shop Sync Plugin up to 4.2.9 on WordPress cross site scripting

CVE-2024-7731 | SECOM Dr.ID Access Control System up to 3.6.2 page sql injection