Deserialization of Untrusted Data vulnerability in ICONICS GENESIS64 versions 10.97.1 and prior and Mitsubishi Electric MC Works64 versions 4.04E (10.95.210.01) and prior allows an unauthenticated attacker to execute an arbitrary malicious code by leading a user to load a project configuration file including malicious XML codes.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Mitsubishi

Published: 2022-07-20T16:56:24

Updated: 2024-08-03T08:09:21.319Z

Reserved: 2022-06-14T00:00:00

Link: CVE-2022-33320

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-07-20T17:15:08.397

Modified: 2024-11-21T07:08:10.487

Link: CVE-2022-33320

cve-icon Redhat

No data.