GCVE - cpe:2.3:h:mitsubishielectric:fx3u-128mr\/es:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:mitsubishielectric:fx3u-128mr\/es:-:*:*:*:*:*:*:*

part: h version: - update: *

Vendor	Mitsubishielectric (`4baed789-ac20-5dd5-8550-a965394bc219`)
Product	Fx3U 128Mr/Es (`d279bcba-2860-5eab-9b38-900970ac3546`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-4699`	not_vulnerable	2026-06-03 14:53:29.447282	Arbitrary Command Execution Vulnerability in Mitsubishi Electric proprietary protocol communication of multiple FA products CRITICAL (10) Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series CPU modules, MELSEC iQ-F Series, MELSEC iQ-R series CPU modules, MELSEC iQ-R series, MELSEC iQ-L series, MELSEC Q series, MELSEC-L series, Mitsubishi Electric CNC M800V/M80V series, Mitsubishi Electric CNC M800/M80/E80 series and Mitsubishi Electric CNC M700V/M70V/E70 series allows a remote unauthenticated attacker to execute arbitrary commands by sending specific packets to the affected products. This could lead to disclose or tamper with information by reading or writing control programs, or cause a denial-of-service (DoS) condition on the products by resetting the memory contents of the products to factory settings or resetting the products remotely. Published: 2023-11-06T05:02:15.543Z Updated: 2025-12-16T18:23:26.501Z Open on db.gcve.eu Reference links https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-013_en.pdf https://jvn.jp/vu/JVNVU94620134/ https://www.cisa.gov/news-events/ics-advisories/icsa-23-306-03	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-4562`	not_vulnerable	2026-06-03 14:53:28.734615	Information Disclosure, Information Tampering and Authentication Bypass Vulnerability in MELSEC-F Series main module CRITICAL (9.1) Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a remote unauthenticated attacker to obtain sequence programs from the product or write malicious sequence programs or improper data in the product without authentication by sending illegitimate messages. Published: 2023-10-13T01:26:06.018Z Updated: 2025-02-27T20:41:33.964Z Open on db.gcve.eu Reference links https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-012_en.pdf https://jvn.jp/vu/JVNVU90509290/ https://www.cisa.gov/news-events/ics-advisories/icsa-23-285-13	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-2846`	not_vulnerable	2026-06-03 14:51:44.325785	Authentication Bypass Vulnerability in MELSEC-F Series main module HIGH (7.5) Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series main modules allows a remote unauthenticated attacker to cancel the password/keyword setting and login to the affected products by sending specially crafted packets. Published: 2023-06-30T04:05:26.423Z Updated: 2025-03-05T18:55:00.963Z Open on db.gcve.eu Reference links https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-005_en.pdf https://jvn.jp/vu/JVNVU94519952 https://www.cisa.gov/news-events/ics-advisories/icsa-23-180-04	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.