All CISA Advisories

ICONICS and Mitsubishi Electric GENESIS64 Products

2024-12-03 21:12

1. EXECUTIVE SUMMARY

CVSS v4 8.5
ATTENTION: Low attack complexity
Vendor: ICONICS, Mitsubishi Electric
Equipment: ICONICS GENESIS64 Product Suite and Mitsubishi Electric MC Works64
Vulnerabilities: Uncontrolled Search Path Element, Dead Code

2. RISK EVALUATION

Successful exploitation of these vulnerabilities could result in remote code execution.

3. TECHNICAL DETAILS

3.1 AFFECTED PRODUCTS

ICONICS reports that the following versions of ICONICS and Mitsubishi Electric products are affected:

GENESIS64 AlarmWorX Multimedia (AlarmWorX64 MMX): Versions prior to 10.97.3 (CVE-2024-8299 and CVE-2024-9852)
GENESIS6
[…]

This article has been indexed from All CISA Advisories

Read the original article:

ICONICS and Mitsubishi Electric GENESIS64 Products

Related

← Ruijie Reyee OS

FTC Says Data Brokers Unlawfully Tracked Protesters and US Military Personnel →