You are here

Mitsubishi Electric Multiple Products (ICSA-20-245-01)

Mitsubishi Electric Multiple Products (ICSA-20-245-01)

Created: Thursday, September 3, 2020 - 10:25
Categories:
Cybersecurity

CISA has published an advisory on predictable exact value from previous values vulnerability in multiple products from Mitsubishi Electric. Successful exploitation of this vulnerability could be used to hijack TCP sessions and allow remote command execution. Mitsubishi Electric recommends that users take a series of mitigation measures to minimize the risk of exploiting this vulnerability. CISA recommends a series of measures to mitigate the vulnerability. Read the advisory at CISA.