Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:air_conditioning_system/centralized_controllers_g-50a;_gb-50a;_gb-24a;_ag-150a-a;_ag-150a-j;_gb-50ada-a;_gb-50ada-j;_eb-50gu-a;_eb-50gu-j;_ae-200a;_ae-200e;_ae-50a;_ae-50e;_ew-50a;_ew-50e;_te-200a;_te-50a;_tw-50a;_cms-rmd-j;_air_conditioning_system/expansion_controllers_pac-yg50eca;_air_conditioning_system/bm_adapter_bac-hd150:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductAir Conditioning System/Centralized Controllers G 50A; Gb 50A; Gb 24A; Ag 150A A; Ag 150A J; Gb 50Ada A; Gb 50Ada J; Eb 50Gu A; Eb 50Gu J; Ae 200A; Ae 200E; Ae 50A; Ae 50E; Ew 50A; Ew 50E; Te 200A; Te 50A; Tw 50A; Cms Rmd J; Air Conditioning System/Expansion Controllers Pac Yg50Eca; Air Conditioning System/Bm Adapter Bac Hd150 (11e35752-954e-5c41-a953-9c49b6109857)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-20595 vulnerable 2026-06-08 05:29:09.699845 Details available
Improper Restriction of XML External Entity Reference vulnerability in Mitsubishi Electric Air Conditioning System/Centralized Controllers (G-50A Ver.3.35 and prior, GB-50A Ver.3.35 and prior, GB-24A Ver.9.11 and prior, AG-150A-A Ver.3.20 and prior, AG-150A-J Ver.3.20 and prior, GB-50ADA-A Ver.3.20 and prior, GB-50ADA-J Ver.3.20 and prior, EB-50GU-A Ver 7.09 and prior, EB-50GU-J Ver 7.09 and prior, AE-200A Ver 7.93 and prior, AE-200E Ver 7.93 and prior, AE-50A Ver 7.93 and prior, AE-50E Ver 7.93 and prior, EW-50A Ver 7.93 and prior, EW-50E Ver 7.93 and prior, TE-200A Ver 7.93 and prior, TE-50A Ver 7.93 and prior, TW-50A Ver 7.93 and prior, CMS-RMD-J Ver.1.30 and prior), Air Conditioning System/Expansion Controllers (PAC-YG50ECA Ver.2.20 and prior) and Air Conditioning System/BM adapter(BAC-HD150 Ver.2.21 and prior) allows a remote unauthenticated attacker to disclose some of data in the air conditioning system or cause a DoS condition by sending specially crafted packets.
Published: 2021-07-13T10:54:01.000Z
Updated: 2024-08-03T17:45:44.715Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.