CVE-2022-29829

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 all versions allows a remote unauthenticated attacker to disclose sensitive information . As a result, unauthorized users may view or execute programs illegally.
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mitsubishielectric:gx_works3:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_works3:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_works3:*:*:*:*:*:*:*:*

History

28 Nov 2022, 20:58

Type Values Removed Values Added
CPE cpe:2.3:a:mitsubishielectric:gx_works3:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
First Time Mitsubishielectric
Mitsubishielectric gx Works3
References (MISC) https://jvn.jp/vu/JVNVU97244961/index.html - (MISC) https://jvn.jp/vu/JVNVU97244961/index.html - Third Party Advisory, VDB Entry
References (MISC) https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-015_en.pdf - (MISC) https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-015_en.pdf - Mitigation, Vendor Advisory
CWE CWE-798

25 Nov 2022, 00:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-11-25 00:15

Updated : 2022-11-28 20:58


NVD link : CVE-2022-29829

Mitre link : CVE-2022-29829


JSON object : View

Products Affected

mitsubishielectric

  • gx_works3
CWE
CWE-798

Use of Hard-coded Credentials