CVE-2022-40266

Description

Improper Input Validation vulnerability in Mitsubishi Electric GOT2000 Series GT27 model FTP server versions 01.39.000 and prior, Mitsubishi Electric GOT2000 Series GT25 model FTP server versions 01.39.000 and prior and Mitsubishi Electric GOT2000 Series GT23 model FTP server versions 01.39.000 and prior allows a remote authenticated attacker to cause a Denial of Service condition by sending specially crafted command.

Related CPE's

omitsubishielectricgot2000_gt27_firmware********

hmitsubishielectricgot2000_gt27-*******

omitsubishielectricgot2000_gt25_firmware********

hmitsubishielectricgot2000_gt25-*******

omitsubishielectricgot2000_gt23_firmware********

hmitsubishielectricgot2000_gt23-*******

References

https://jvn.jp/vu/JVNVU95633416

Third Party Advisory

https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-016_en.pdf

MitigationVendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io