Plaintext Password Storage Vulnerability in Mitsubishi Electric Corporation MELSEC Series

Plaintext Password Storage Vulnerability in Mitsubishi Electric Corporation MELSEC Series

CVE-2023-0457 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Plaintext Storage of a Password vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series, MELSEC iQ-R Series, MELSEC-Q Series and MELSEC-L Series allows a remote unauthenticated attacker to disclose plaintext credentials stored in project files and login into FTP server or Web server.

Learn more about our Web App Pen Testing.