Hard-coded Password Vulnerability in Mitsubishi Electric GX Works3 and GT Designer3: Unauthorized Access and Information Disclosure

Hard-coded Password Vulnerability in Mitsubishi Electric GX Works3 and GT Designer3: Unauthorized Access and Information Disclosure

CVE-2022-29825 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U and GT Designer3 Version1 (GOT2000) versions from 1.122C to 1.290C allows an unauthenticated attacker to disclose sensitive information. As a result, unauthenticated users may view programs and project files or execute programs illegally.

Learn more about our User Device Pen Test.