CVE-2022-25164 Information

Description

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 all versions and Mitsubishi Electric MX OPC UA Module Configurator-R all versions allows a remote unauthenticated attacker to disclose sensitive information. As a result unauthorized users can gain unauthorized access to the CPU module and the OPC UA server module.

Reference

https://jvn.jp/vu/JVNVU97244961/index.html https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-015_en.pdf