9.8 - CVE-2020-14496

Executive Summary

Informations
Name	CVE-2020-14496	First vendor Publication	2022-05-19
Vendor	Cve	Last vendor Modification	2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Overall CVSS Score	9.8
Base Score	9.8	Environmental Score	9.8
impact SubScore	5.9	Temporal Score	9.8
Exploitabality Sub Score	3.9

Attack Vector	Network	Attack Complexity	Low
Privileges Required	None	User Interaction	None
Scope	Unchanged	Confidentiality Impact	High
Integrity Impact	High	Availability Impact	High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score	7.5	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Successful exploitation of this vulnerability for multiple Mitsubishi Electric Factory Automation Engineering Software Products of various versions could allow an attacker to escalate privilege and execute malicious programs, which could cause a denial-of-service condition, and allow information to be disclosed, tampered with, and/or destroyed.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14496

CPE : Common Platform Enumeration

Type	Description	Count
Application	Mitsubishielectric Cpu Module Logging Configuration Tool cpe:2.3:a:mitsubishielectric:cpu_module_logging_configuration_tool::::::::	1
Application	Mitsubishielectric Cw Configurator cpe:2.3:a:mitsubishielectric:cw_configurator::::::::	1
Application	Mitsubishielectric Data Transfer cpe:2.3:a:mitsubishielectric:data_transfer::::::::	1
Application	Mitsubishielectric Em Configurator cpe:2.3:a:mitsubishielectric:em_configurator::::::::	1
Application	Mitsubishielectric Ezsocket cpe:2.3:a:mitsubishielectric:ezsocket::::::::	1
Application	Mitsubishielectric Fr Configurator2 cpe:2.3:a:mitsubishielectric:fr_configurator2:::::::: cpe:2.3:a:mitsubishielectric:fr_configurator2:-:::::::*	2
Application	Mitsubishielectric Gt Designer3 cpe:2.3:a:mitsubishielectric:gt_designer3::::::::	1
Application	Mitsubishielectric Gt Softgot1000 cpe:2.3:a:mitsubishielectric:gt_softgot1000::::::::	1
Application	Mitsubishielectric Gt Softgot2000 cpe:2.3:a:mitsubishielectric:gt_softgot2000:::::::: cpe:2.3:a:mitsubishielectric:gt_softgot2000:-:::::::*	2
Application	Mitsubishielectric Gx Logviewer cpe:2.3:a:mitsubishielectric:gx_logviewer::::::::	1
Application	Mitsubishielectric Gx Works2 cpe:2.3:a:mitsubishielectric:gx_works2::::::::	1
Application	Mitsubishielectric Gx Works3 cpe:2.3:a:mitsubishielectric:gx_works3::::::::	1
Application	Mitsubishielectric M Commdtm-Hart cpe:2.3:a:mitsubishielectric:m_commdtm-hart::::::::	1
Application	Mitsubishielectric M Commdtm-Io-Link cpe:2.3:a:mitsubishielectric:m_commdtm-io-link:::::::: cpe:2.3:a:mitsubishielectric:m_commdtm-io-link:-:::::::*	2
Application	Mitsubishielectric Melfa-Works cpe:2.3:a:mitsubishielectric:melfa-works::::::::	1
Application	Mitsubishielectric Melsoft Fielddeviceconfigurator cpe:2.3:a:mitsubishielectric:melsoft_fielddeviceconfigurator::::::::	1
Application	Mitsubishielectric Melsoft Navigator cpe:2.3:a:mitsubishielectric:melsoft_navigator::::::::	1
Application	Mitsubishielectric Mh11 Settingtool Version2 cpe:2.3:a:mitsubishielectric:mh11_settingtool_version2::::::::	1
Application	Mitsubishielectric Motorizer cpe:2.3:a:mitsubishielectric:motorizer::::::::	1
Application	Mitsubishielectric Mr Configurator2 cpe:2.3:a:mitsubishielectric:mr_configurator2::::::::	1
Application	Mitsubishielectric Mt Works2 cpe:2.3:a:mitsubishielectric:mt_works2::::::::	1
Application	Mitsubishielectric Mx Component cpe:2.3:a:mitsubishielectric:mx_component::::::::	1
Application	Mitsubishielectric Network Interface Board Cc Ie Control Utility cpe:2.3:a:mitsubishielectric:network_interface_board_cc_ie_control_utility::::::::	1
Application	Mitsubishielectric Network Interface Board Cc Ie Field Utility cpe:2.3:a:mitsubishielectric:network_interface_board_cc_ie_field_utility::::::::	1
Application	Mitsubishielectric Network Interface Board Cc-Link Ver.2 Utility cpe:2.3:a:mitsubishielectric:network_interface_board_cc-link_ver.2_utility::::::::	1
Application	Mitsubishielectric Network Interface Board Mneth Utility cpe:2.3:a:mitsubishielectric:network_interface_board_mneth_utility::::::::	1
Application	Mitsubishielectric Px Developer cpe:2.3:a:mitsubishielectric:px_developer::::::::	1
Application	Mitsubishielectric Rt Toolbox2 cpe:2.3:a:mitsubishielectric:rt_toolbox2::::::::	1
Application	Mitsubishielectric Rt Toolbox3 cpe:2.3:a:mitsubishielectric:rt_toolbox3::::::::	1

Sources (Detail)

https://www.cisa.gov/uscert/ics/advisories/icsa-20-212-02

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 13:39:41	Multiple Updates
2022-06-08 00:27:19	Multiple Updates
2022-05-20 00:27:12	First insertion

Type	Count
CPE ID(s)	32
Sources(s)	1

9.8 - CVE-2020-14496

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CPE : Common Platform Enumeration

Sources (Detail)

Alert History

Global Informations

Open Standards

COMPANY

STANDARDS

RECENT POSTS

MENU