CNNVD-202509-012 Information
CNNVD ID
CNNVD-202509-012
Related CVE
- CNNVD Published: 2025-09-01
Description (Chinese)
Mitsubishi Electric MELSEC iQ-F Series CPU是日本三菱电机(Mitsubishi Electric)公司的一系列CPU模块。 Mitsubishi Electric MELSEC iQ-F Series CPU存在访问控制错误漏洞,该漏洞源于缺少关键功能认证,可能导致设备值读取或写入及程序停止。
Description (English)
Mitsubishi Electric MELSEC iQ-F Series CPU is a series of CPU modules from Mitsubishi Electric, Japan. There is a bug in access control in Mitsubishi Electric MELSEC iQ-F Series CPU, which stems from the lack of critical functionality authentication, which may lead to device value reading or writing and program stop.
Hazard Level
Medium
Vulnerability Type
访问控制错误
Affected Vendor
MLDB
Published
2025-09-01
Last Modified
2026-02-24
References
https://www.mitsubishielectric.com/psirt/vulnerability/pdf/2025-011_en.pdf https://www.cisa.gov/news-events/ics-advisories/icsa-25-240-01 https://jvn.jp/vu/JVNVU90041458/ https://access.redhat.com/security/cve/cve-2025-7405 https://nvd.nist.gov/vuln/detail/CVE-2025-7405
Patch
https://www.mitsubishielectric.com/psirt/vulnerability/pdf/2025-011_en.pdf
Share on: