Improper Input Validation vulnerability in Mitsubishi Electric GOT2000 Series GT27 model FTP server versions 01.39.000 and prior, Mitsubishi Electric GOT2000 Series GT25 model FTP server versions 01.39.000 and prior and Mitsubishi Electric GOT2000 Series GT23 model FTP server versions 01.39.000 and prior allows a remote authenticated attacker to cause a Denial of Service condition by sending specially crafted command.
References
Link | Resource |
---|---|
https://jvn.jp/vu/JVNVU95633416 | Third Party Advisory |
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-016_en.pdf | Mitigation Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
History
30 Nov 2022, 20:02
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:mitsubishielectric:got2000_gt23:-:*:*:*:*:*:*:* cpe:2.3:o:mitsubishielectric:got2000_gt23_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:mitsubishielectric:got2000_gt25_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:mitsubishielectric:got2000_gt27:-:*:*:*:*:*:*:* cpe:2.3:h:mitsubishielectric:got2000_gt25:-:*:*:*:*:*:*:* cpe:2.3:o:mitsubishielectric:got2000_gt27_firmware:*:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
References | (MISC) https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-016_en.pdf - Mitigation, Vendor Advisory | |
References | (MISC) https://jvn.jp/vu/JVNVU95633416 - Third Party Advisory | |
First Time |
Mitsubishielectric got2000 Gt25
Mitsubishielectric got2000 Gt23 Firmware Mitsubishielectric got2000 Gt27 Firmware Mitsubishielectric got2000 Gt23 Mitsubishielectric Mitsubishielectric got2000 Gt25 Firmware Mitsubishielectric got2000 Gt27 |
|
CWE | CWE-20 |
24 Nov 2022, 09:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-24 09:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-40266
Mitre link : CVE-2022-40266
CVE.ORG link : CVE-2022-40266
JSON object : View
Products Affected
mitsubishielectric
- got2000_gt23
- got2000_gt25
- got2000_gt25_firmware
- got2000_gt27_firmware
- got2000_gt27
- got2000_gt23_firmware
CWE
CWE-20
Improper Input Validation