March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – Multiple Apple Safari, macOS Sonoma, iOS and iPadOS Vulnerabilities
December 1, 2023Rewterz Threat Advisory – ICS: Delta Electronics DOPSoft Vulnerability
December 1, 2023Rewterz Threat Advisory – Multiple Apple Safari, macOS Sonoma, iOS and iPadOS Vulnerabilities
December 1, 2023Rewterz Threat Advisory – ICS: Delta Electronics DOPSoft Vulnerability
December 1, 2023
Severity
High
Analysis Summary
CVE-2023-5247
Mitsubishi Electric FA Engineering Software Products could allow a remote attacker to execute arbitrary code on the system, caused by external control of file names or paths. By persuading a victim to open a specially crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system, obtain sensitive information, or cause a denial of service.
Impact
- Code Execution
Indicators Of Compromise
CVE
- CVE-2023-5247
Affected Vendors
Mitsubishi Electric
Affected Products
- Mitsubishi Electric MELSOFT iQ AppPortal
- Mitsubishi Electric MELSOFT Navigator
- Mitsubishi Electric GX Works3
Remediation
Refer to Mitsubishi Electric Security Advisory for patch, upgrade or suggested workaround information.