CVE-2023-2846 (fx3g-14mr/ds_firmware, fx3g-14mr/es-a_firmware, fx3g-14mr/es_firmware, fx3g-14mt/ds_firmware, fx3g-14mt/dss_firmware, fx3g-14mt/es-a_firmware, fx3g-14mt/es_firmware, fx3g-14mt/ess_firmware, fx3g-24mr/ds_firmware, fx3g-24mr/es-a_firmwar

Authentication Bypass by Capture-replay vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series main modules allows a remote unauthenticated attacker to cancel the password/keyword setting and login to the affected products by sending specially crafted packets.

authentication authentication bypass bypass capture cve electric login main mitsubishi mitsubishi electric modules packets password products replay series vulnerability