You are here

Mitsubishi Electric MC Works64, MC Works32 (ICSA-20-170-02)

Mitsubishi Electric MC Works64, MC Works32 (ICSA-20-170-02)

Created: Thursday, June 18, 2020 - 13:44
Categories:
Cybersecurity

CISA has published an advisory on out-of-bounds write, deserialization of untrusted data, and code injection vulnerabilities in Mitsubishi Electric MC Works64, MC Works32. For MC Works64 Version 4.02C (10.95.208.31) and earlier, all versions are affected. MC Works32 Version 3.00A (9.50.255.02) is also affected. Successful exploitation of these vulnerabilities may allow remote code execution, a denial-of-service condition, information disclosure, or information tampering. Mitsubishi Electric recommends updating to the latest software version or applying security patches. CISA also recommends a series of measures to mitigate the vulnerabilities. Read the advisory at CISA.