Path traversal in Mitsubishi Electric Factory Automation Products
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2020-14523 |
| CWE-ID | CWE-22 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
CW Configurator Client/Desktop applications / Software for system administration Mitsubishi Electric FR Configurator2 Client/Desktop applications / Software for system administration GX Works2 Client/Desktop applications / Software for system administration GX Works3 Client/Desktop applications / Software for system administration MELSOFT iQ AppPortal Client/Desktop applications / Software for system administration MELSOFT Navigator Client/Desktop applications / Software for system administration MI Configurator Client/Desktop applications / Software for system administration MR Configurator2 Client/Desktop applications / Software for system administration MT Works2 Client/Desktop applications / Software for system administration RT ToolBox3 Client/Desktop applications / Software for system administration MELSEC iQ-R series Hardware solutions / Routers & switches, VoIP, GSM, etc MX Component Universal components / Libraries / Libraries used by multiple products |
| Vendor | Mitsubishi Electric |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) Path traversal
EUVDB-ID: #VU32954
Risk: Medium
CVSSv4.0: 4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2020-14523
CWE-ID:
CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform directory traversal attacks.
The vulnerability exists due to input validation error when processing directory traversal sequences. A remote attacker can send a specially crafted HTTP request and read arbitrary files on the system, leading to arbitrary code execution.
MitigationInstall update from vendor's website.
Vulnerable software versionsCW Configurator: - - 1.010L
Mitsubishi Electric FR Configurator2: - - 1.22Y
GX Works2: - - 1.595V
GX Works3: - - 1.063R
MELSEC iQ-R series: All versions
MELSOFT iQ AppPortal: All versions
MELSOFT Navigator: All versions
MI Configurator: All versions
MR Configurator2: All versions
MT Works2: - - 1.156N
MX Component: All versions
RT ToolBox3: - - 1.70Y
CPE2.3- cpe:2.3:a:mitsubishi_electric:cw_configurator:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:cw_configurator:1.010L:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:mitsubishi_electric_fr_configurator2:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:mitsubishi_electric_fr_configurator2:1.22Y:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:gx_works2:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:gx_works2:1.595V:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:gx_works3:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:gx_works3:1.063R:*:*:*:*:*:*:*
- cpe:2.3:h:mitsubishi_electric:melsec_iq-r_series:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:melsoft_iq_appportal:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:melsoft_navigator:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:mi_configurator:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:mr_configurator2:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:mt_works2:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:mx_component:*:*:*:*:*:*:*:*
- cpe:2.3:a:mitsubishi_electric:rt_toolbox3:*:*:*:*:*:*:*:*
https://ics-cert.us-cert.gov/advisories/icsa-20-212-03
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
