CNNVD-202506-3369 Information
CNNVD ID
CNNVD-202506-3369
Related CVE
- CNNVD Published: 2025-06-26
Description (Chinese)
Mitsubishi Electric G-50等都是日本三菱电机(Mitsubishi Electric)公司的一款空调集中控制器。 Mitsubishi Electric多款产品存在访问控制错误漏洞,该漏洞源于缺少关键功能身份验证,可能导致非法控制空调系统或信息泄露。以下产品和版本受到影响:G-50 3.37及之前版本、G-50-W 3.37及之前版本、G-50A 3.37及之前版本、GB-50 3.37及之前版本、GB-50A 3.37及之前版本、GB-24A 9.12及之前版本、G-150AD 3.21及之前版本、AG-150A-A 3.21及之前版本、AG-150A-J 3.21及之前版本、GB-50AD 3.21及之前版本、GB-50ADA-A 3.21及之前版本、GB-50ADA-J 3.21及之前版本、EB-50GU-A 7.11及之前版本、EB-50GU-J 7.11及之前版本、AE-200J 8.01及之前版本、AE-200A 8.01及之前版本、AE-200E 8.01及之前版本、AE-50J 8.01及之前版本、AE-50A 8.01及之前版本、AE-50E 8.01及之前版本、EW-50J 8.01及之前版本、EW-50A 8.01及之前版本、EW-50E 8.01及之前版本、TE-200A 8.01及之前版本、TE-50A 8.01及之前版本、TW-50A 8.01及之前版本和CMS-RMD-J 1.40及之前版本。
Description (English)
Mitsubishi Electric G-50 and others are a centralized air-conditioning controller for Mitsubishi Electric, Japan. There was an access control error gap in the Mitsubishi Electric multi-products, which stemmed from a lack of critical functional identification, which could lead to illegal control of air-conditioning systems or information leaks. The following products and versions were affected: G-50 3.37 and earlier, G-50-W 3.37 and earlier, G-50A-3.37 and earlier, G-50A-3.37 and earlier, GB-50 3.37 and earlier, GB-50GA-3.37 and earlier, GB-24A 9.12 and earlier, G-150AD 3.21 and earlier, AG-150A-3.21 and earlier, AG-150A-J 3.21 and earlier, GB-50AD-3.21 and earlier, GB-50ADA-A3.21 and earlier, GB-50A-J-3.21 and earlier, GB-50A-3.21 and earlier, GB-50A-J and earlier, GB-50A-3.21 and earlier, GB-50A-337 and earlier, GB-50AU-A-7.11 and earlier, EB-50-E-50 and previous, 8.01-E-E-X-I-I-I-I-I-I-I-E-I-I-I-I-E-I-I-I-E-I-I-I-I-I-E-E-I
Hazard Level
Low
Vulnerability Type
访问控制错误
Affected Vendor
三菱电机
Published
2025-06-26
Last Modified
2026-02-24
References
https://jvn.jp/vu/JVNVU96471539/ https://www.cisa.gov/news-events/ics-advisories/icsa-25-177-01 https://www.mitsubishielectric.com/psirt/vulnerability/pdf/2025-004_en.pdf https://access.redhat.com/security/cve/cve-2025-3699
Share on: