Rewterz Threat Advisory – Multiple Google Chrome Vulnerabilities
November 30, 2022Rewterz Threat Alert – Shuckworm APT Group aka Armageddon – Active IOCs
November 30, 2022Rewterz Threat Advisory – Multiple Google Chrome Vulnerabilities
November 30, 2022Rewterz Threat Alert – Shuckworm APT Group aka Armageddon – Active IOCs
November 30, 2022Severity
Medium
Analysis Summary
CVE-2022-40266
The affected GOT2000 Series devices with FTP server versions 01.39.000 and prior are vulnerable to improper input validation, which could allow an attacker to cause a denial-of-service condition by sending a specially crafted command.
Impact
Denial of Service
Indicators Of Compromise
CVE
- CVE-2022-40266
Affected Vendors
Mitsubishi Electric
Affected Products
- GT27 Model: FTP server versions 01.39.000 and prior
- GT25 Model: FTP server versions 01.39.000 and prior
- GT23 Model: FTP server versions 01.39.000 and prior
Remediation
Refer to CISA-CERT Advisory for the patch, upgrade, or suggested workaround information.
CISA-CERT Advisory