漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU firmware versions "11" and prior allows a remote unauthenticated attacker to login to the target unauthorizedly by sniffing network traffic and obtaining credentials when registering user information in the target or changing a password.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mitsubishi Electric MELSEC iQ-R series 访问控制错误漏洞
Vulnerability Description
Mitsubishi Electric MELSEC iQ-R series是日本三菱电机(Mitsubishi Electric)公司的一款可编程逻辑控制器。 Mitsubishi Electric MELSEC iQ-R 系列产品存在访问控制错误漏洞,该漏洞源于产品未对凭证添加有效的保护机制,攻击者可通过用户注册、更改密码时通过嗅探工具获得凭证从而未经授权的登录到目标。以下产品及版本受到影响:Mitsubishi Electric MELSEC iQ-R R08/16/32/120SFCPU 所有固件
CVSS Information
N/A
Vulnerability Type
N/A