Alerts[Control Systems] Mitsubishi Electric security advisory (AV22-099)

Number: AV22-099
Date: 25 February 2022

On 24 February 2022 ICS-CERT published an ICS Advisory to highlight vulnerabilities in the following products:

  • EcoWebServerIII
    • MES3-255C-EN – versions 3.0.0 to 3.3.0
    • MES3-255C-DM-EN – versions 3.0.0 to 3.3.0
    • MES3-255C-CN – versions 3.0.0 to 3.3.0
    • MES3-255C-DM-CN – versions 3.0.0 to 3.3.0

Exploitation of these vulnerabilities could result in information disclosure, unauthorized data modification or denial of service.

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

ICS Advisory (ICSA-22-055-02)
 

Date modified: