CVE-2022-29832

Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthorized attacker to disclose sensitive information. As a result, unauthorized users could obtain information about the project file for MELSEC safety CPU modules.
References
Link Resource
https://jvn.jp/vu/JVNVU97244961 Third Party Advisory VDB Entry
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-015_en.pdf Mitigation Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:mitsubishielectric:gx_works3:*:*:*:*:*:*:*:*
cpe:2.3:a:mitsubishielectric:gx_works3:*:*:*:*:*:*:*:*

Information

Published : 2022-11-25 12:15

Updated : 2022-11-28 08:57


NVD link : CVE-2022-29832

Mitre link : CVE-2022-29832

Products Affected
No products.
CWE
CWE-312

Cleartext Storage of Sensitive Information