Description

Incorrect Default Permissions vulnerability in GenBroker32, which is included in the installers for Mitsubishi Electric GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric Iconics Digital Solutions GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric Iconics Digital Solutions ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric GENESIS32 versions 9.70.300.23 and prior, Mitsubishi Electric Iconics Digital Solutions GENESIS32 versions 9.70.300.23 and prior, and Mitsubishi Electric MC Works64 all versions allows a local authenticated attacker to disclose or tamper with confidential information and data contained in the products, or cause a denial of service (DoS) condition on the products, by accessing a folder with incorrect permissions, when GenBroker32 is installed on the same PC as GENESIS64, ICONICS Suite, MC Works64, or GENESIS32.

INFO

Published Date :

2024-10-22T22:19:20.646Z

Last Modified :

2026-01-09T05:46:11.126Z

Source :

Mitsubishi
AFFECTED PRODUCTS

The following products are affected by CVE-2024-7587 vulnerability.

Vendors Products
Iconics
  • Genesis64
Mitsubishielectric
  • Mc Works64
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-7587.

URL Resource
https://jvn.jp/vu/JVNVU95548104 cve-icon cve-icon
https://www.cisa.gov/news-events/ics-advisories/icsa-24-296-01 cve-icon cve-icon
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-008_en.pdf cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact