CVE-2025-3755 – Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules Index Validation Bypass

May 29, 2025

CVE ID : CVE-2025-3755

Published : May 29, 2025, 5:15 a.m. | 15 minutes ago

Description : Improper Validation of Specified Index, Position, or Offset in Input vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules allows a remote unauthenticated attacker to read information in the product, to cause a Denial-of-Service (DoS) condition in MELSOFT connection, or to stop the operation of the CPU module (causing a DoS condtion on the CPU module), by sending specially crafted packets. The product is needed to reset for recovery.

Severity: 9.1 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4583 – Smash Balloon Social Photo Feed – Easy Social Feeds Plugin Stored Cross-Site Scripting (XSS)

Next Article CodeSOD: Recasting the Team

Highlights

CVE-2025-3847 – Markparticle WebServer SQL Injection Vulnerability

April 21, 2025

CVE ID : CVE-2025-3847

Published : April 21, 2025, 11:15 p.m. | 3 hours, 21 minutes ago

Description : A vulnerability classified as critical has been found in markparticle WebServer up to 1.0. This affects an unknown part of the file code/http/httprequest.cpp of the component Login. The manipulation of the argument username/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Does Elden Ring Nightreign have crossplay or cross-platform play?

Cyberpunk 2077 sequel enters pre-production as Phantom Liberty crosses 10 million copies sold

EA has canceled yet another game, shuttered its developer, and started more layoffs

The Witcher 3: Wild Hunt reaches 60 million copies sold as work continues on The Witcher 4

How Remix is shaking things up

How Remix is shaking things up

Perficient at Kscope25: Let’s Meet in Texas!

Salesforce + Informatica: What It Means for Data Cloud and Our Customers

Does Elden Ring Nightreign have crossplay or cross-platform play?

Does Elden Ring Nightreign have crossplay or cross-platform play?

Cyberpunk 2077 sequel enters pre-production as Phantom Liberty crosses 10 million copies sold

EA has canceled yet another game, shuttered its developer, and started more layoffs

CVE-2025-3755 – Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules Index Validation Bypass

China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil

New Apache InLong Vulnerability (CVE-2025-27522) Exposes Systems to Remote Code Execution Risks

Microsoft Expands AI Office in London, “We’re Hiring,” CEO Announces

Miriway – Mir based Wayland compositor

GCP Cloud Composer Bug Let Attackers Elevate Access via Malicious PyPI Packages

I’ve been gaming on Alienware’s sharpest OLED monitor, and 4K has never looked so smooth

CVE-2025-3847 – Markparticle WebServer SQL Injection Vulnerability

A community collaboration for progress

Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Days

Statamic 5 is released!

CVE-2025-3755 – Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules Index Validation Bypass

Related Posts