exploitDog

GHSA-37x5-q2m2-89q6

Опубликовано: 25 нояб. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

Insufficiently Protected Credentials vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthorized attacker to disclose sensitive information. As a result, unauthorized users could access to MELSEC safety CPU modules illgally.

Insufficiently Protected Credentials vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthorized attacker to disclose sensitive information. As a result, unauthorized users could access to MELSEC safety CPU modules illgally.

Ссылки

EPSS

Процентиль: 69%

0.00596

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-522

Связанные уязвимости

CVE-2022-29833

CVSS3: 6.8

nvd

около 3 лет назад

Insufficiently Protected Credentials vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users could access to MELSEC safety CPU modules illgally.

EPSS

Процентиль: 69%

0.00596

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-522