Description

Windows Shortcut Following (.LNK) vulnerability in multiple processes of Mitsubishi Electric Iconics Digital Solutions GENESIS64 all versions, Mitsubishi Electric Iconics Digital Solutions GENESIS version 11.00, Mitsubishi Electric GENESIS64 all versions, Mitsubishi Electric MC Works64 all versions, and Mitsubishi Electric GENESIS version 11.00 allows a local authenticated attacker to make an unauthorized write to arbitrary files, by creating a symbolic link from a file used as a write destination by the processes of the affected products to a target file. This could allow the attacker to destroy the file on a PC with the affected products installed, resulting in a denial-of-service (DoS) condition on the PC if the destroyed file is necessary for the operation of the PC.

INFO

Published Date :

2025-08-06T06:28:41.185Z

Last Modified :

2025-08-06T06:28:41.185Z

Source :

Mitsubishi
AFFECTED PRODUCTS

The following products are affected by CVE-2025-7376 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-7376.

URL Resource
https://jvn.jp/vu/JVNVU96364629 cve-icon cve-icon
https://www.cisa.gov/news-events/ics-advisories/icsa-25-217-01 cve-icon cve-icon
https://www.mitsubishielectric.com/psirt/vulnerability/pdf/2025-009_en.pdf cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact