Security Advisory

CVE-2025-7405

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-01 03:54:47

Last updated 2025-09-02 19:27:49

Assigner Mitsubishi

State PUBLISHED

Description

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to read or write the device values of the product and stop the operation of the programs, since MODBUS/TCP in the products does not have authentication features.

← Browse all CVEs View on cve.org ↗