Hard-coded Cryptographic Key Vulnerability in Mitsubishi Electric GX Works3 and Motion Control Setting Software

Hard-coded Cryptographic Key Vulnerability in Mitsubishi Electric GX Works3 and Motion Control Setting Software

CVE-2022-29830 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Motion Control Setting(GX Works3 related software) versions from 1.000A and later allows a remote unauthenticated attacker to disclose or tamper with sensitive information. As a result, unauthenticated attackers may obtain information about project files illegally.

Learn more about our Web Application Penetration Testing UK.