Multiple Mitsubishi Electric Factory Automation engineering software products have a malicious code execution vulnerability. A malicious attacker could use this vulnerability to obtain information, modify information, and cause a denial-of-service condition.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14521
Reference (s):
- https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2020-007_en.pdf
- https://www.cisa.gov/uscert/ics/advisories/icsa-20-212-04
- URL: https://www.cisa.gov/uscert/ics/advisories/icsa-20-212-04