Mitsubishi Electric Updates

Your review has been sent successfully

2683

Security Alert

● Critical

● High

● Medium

● Low

Warning Date

Severity Level

Warning Number

Target Sector

4 July, 2021

● Critical

2021-3134

All

Description:

Mitsubishi Electric has released security updates to address several vulnerabilities in the following products:

Air Conditioning System / Centralized Controllers affected:
- AE-200A: Versions 7.93 and prior
- AE-200E: Versions 7.93 and prior
- AE-50A: Versions 7.93 and prior
- AE-50E: Versions 7.93 and prior
- AG-150A-A: Versions 3.20 and prior
- AG-150A-J: Versions 3.20 and prior
- CMS-RMD-J: Versions 1.30 and prior
- EB-50GU-A: Versions 7.09 and prior
- EB-50GU-J: Versions 7.09 and prior
- EW-50A: Versions 7.93 and prior
- EW-50E: Versions 7.93 and prior
- G-50A: Version 2.50 to Version 3.35
- G-50A: Versions 3.35 and prior
- GB-24A: Versions 9.11 and prior
- GB-50A: Version 2.50 to Version 3.35
- GB-50A: Versions 3.35 and prior
- GB-50ADA-A: Versions 3.20 and prior
- GB-50ADA-J: Versions 3.20 and prior
- TE-200A: Versions 7.93 and prior
- TE-50A: Versions 7.93 and prior
- TW-50A: Versions 7.93 and prior
Air Conditioning System / Expansion Controllers are affected:
- PAC-YG50ECA: Versions 2.20 and prior
Air Conditioning System/BM adapter:
- BAC-HD150: Versions 2.21 and prior

Threats:

Attacker could exploit these vulnerabilities by doing the following:

Best practice and Recommendations:

The CERT team encourages users to review Mitsubishi Electric security advisory:

Last updated at 4 July, 2021