CVE-2022-29832

🗓️ 24 Nov 2022 23:37:41Reported by MitsubishiType

cve🔗 web.nvd.nist.gov📰️ 6 Media mentions👁 69 Views

Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later, GX Works2 all versions and GX Developer versions 8.40S and later allows a remote unauthenticated attacker to disclose sensitive information

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2022-29832	5 Dec 202215:01	–	circl
CNNVD	Mitsubishi Electric GX Works3 安全漏洞	25 Nov 202200:00	–	cnnvd
Cvelist	CVE-2022-29832	24 Nov 202223:37	–	cvelist
EUVD	EUVD-2022-34150	3 Oct 202520:07	–	euvd
ICS	Mitsubishi Electric FA Engineering Software (Update C)	5 Dec 202207:00	–	ics
NVD	CVE-2022-29832	25 Nov 202200:15	–	nvd
OSV	CVE-2022-29832	25 Nov 202200:15	–	osv
Prion	Information disclosure	25 Nov 202200:15	–	prion
Positive Technologies	PT-2022-19862 · Mitsubishi · Gx Works3 +2	24 Nov 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-29832	22 May 202522:12	–	redhatcve

NVD

Node

mitsubishielectric gx_works3Range1.015r–1.086q

mitsubishielectric gx_works3Range1.087r≥

[
  {
    "defaultStatus": "unaffected",
    "product": "GX Works3",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "1.015R and later"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "GX Works2",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "all versions"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "GX Developer",
    "vendor": "Mitsubishi Electric Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "8.40S and later"
      }
    ]
  }
]

Source	Link
mitsubishielectric	www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-015_en.pdf
cisa	www.cisa.gov/uscert/ics/advisories/icsa-22-333-05
jvn	www.jvn.jp/vu/JVNVU97244961