Vulnerabilities > Mitsubishielectric > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-25 | CVE-2022-25164 | Cleartext Storage of Sensitive Information vulnerability in Mitsubishielectric GX Works3 and MX OPC UA Module Configurator-R Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Mitsubishi Electric MX OPC UA Module Configurator-R versions 1.08J and prior allows a remote unauthenticated attacker to disclose sensitive information. | 7.5 |
| 2022-11-25 | CVE-2022-29825 | Use of Hard-coded Credentials vulnerability in Mitsubishielectric GX Works3 Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U and GT Designer3 Version1 (GOT2000) versions from 1.122C to 1.290C allows an unauthenticated attacker to disclose sensitive information. | 7.5 |
| 2022-11-25 | CVE-2022-29826 | Cleartext Storage of Sensitive Information vulnerability in Mitsubishielectric GX Works3 Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.087R and Motion Control Setting(GX Works3 related software) versions from 1.000A to 1.042U allows a remote unauthenticated attacker to disclose sensitive information. | 7.5 |
| 2022-11-25 | CVE-2022-29827 | Use of Hard-coded Credentials vulnerability in Mitsubishielectric GX Works3 Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote unauthenticated attacker to disclose sensitive information. | 7.5 |
| 2022-11-25 | CVE-2022-29828 | Use of Hard-coded Credentials vulnerability in Mitsubishielectric GX Works3 Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote unauthenticated attacker to disclose sensitive information. | 7.5 |
| 2022-11-25 | CVE-2022-29829 | Use of Hard-coded Credentials vulnerability in Mitsubishielectric GX Works3 Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 (GOT2000) versions from 1.122C to 1.290C and Motion Control Setting(GX Works3 related software) versions from 1.035M to 1.042U allows a remote unauthenticated attacker to disclose sensitive information. | 7.5 |
| 2022-11-25 | CVE-2022-29831 | Use of Hard-coded Credentials vulnerability in Mitsubishielectric GX Works3 Use of Hard-coded Password vulnerability in Mitsubishi Electric Corporation GX Works3 versions from 1.015R to 1.095Z allows a remote unauthenticated attacker to obtain information about the project file for MELSEC safety CPU modules. | 7.5 |
| 2022-07-20 | CVE-2022-33315 | Deserialization of Untrusted Data vulnerability in multiple products Deserialization of Untrusted Data vulnerability in ICONICS GENESIS64 versions 10.97.1 and prior and Mitsubishi Electric MC Works64 versions 4.04E (10.95.210.01) and prior allows an unauthenticated attacker to execute an arbitrary malicious code by leading a user to load a monitoring screen file including malicious XAML codes. | 7.8 |
| 2022-07-20 | CVE-2022-33316 | Deserialization of Untrusted Data vulnerability in multiple products Deserialization of Untrusted Data vulnerability in ICONICS GENESIS64 versions 10.97.1 and prior and Mitsubishi Electric MC Works64 versions 4.04E (10.95.210.01) and prior allows an unauthenticated attacker to execute an arbitrary malicious code by leading a user to load a monitoring screen file including malicious XAML codes. | 7.8 |
| 2022-07-20 | CVE-2022-33317 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products Inclusion of Functionality from Untrusted Control Sphere vulnerability in ICONICS GENESIS64 versions 10.97.1 and prior and Mitsubishi Electric MC Works64 versions 4.04E (10.95.210.01) and prior allows an unauthenticated attacker to execute an arbitrary malicious code by leading a user to load a monitoring screen file including malicious script codes. | 7.8 |