Mitsubishi Electric has disclosed a critical authentication bypass vulnerability affecting 27 different air conditioning system models, potentially allowing remote attackers to gain unauthorized control over building HVAC systems. The vulnerability, tracked as CVE-2025-3699, carries a maximum CVSS score of 9.8, indicating its severe nature. The vulnerability stems from a “Missing Authentication for Critical Function” weakness […]
The post Mitsubishi Electric AC Systems Vulnerability Allows Remote Control Without User Interaction appeared first on Cyber Security News.
This article has been indexed from Cyber Security News