CVE-2019-10972

Name of the Vulnerable Software and Affected Versions Mitsubishi Electric FR Configurator2 versions 1.16S and prior

Description The issue occurs when an attacker provides a rogue project file (.frc2) to the target. Upon opening the rogue project, CPU exhaustion happens, causing the software to stop responding until it is restarted.

Recommendations For versions 1.16S and prior, avoid opening project files from untrusted sources to minimize the risk of exploitation. As a temporary workaround, consider implementing measures to monitor and limit CPU usage to prevent exhaustion.