CVE-2022-29828

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated attackers may view programs and project file or execute programs illegally...

CVE-2022-29827

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated attackers may view programs and project files or execute programs illegally...

CVE-2022-29827

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A and later allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated attackers may view programs and project files or execute programs illegally...

CVE-2022-29825

CVE-2022-29825 describes a vulnerability in Mitsubishi Electric GX Works3 (versions 1.000A–1.090U), GT Designer3 (GOT2000) (1.122C–1.290C), and MT Works2 (1.100E–1.200J) where a hard-coded password could be exploited by an unauthenticated attacker to disclose sensitive information, allowing viewi...

CVE-2022-29825

Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 GOT2000 versions from 1.122C to 1.290C, and MT Works2 versions from 1.100E to 1.200J allows an unauthenticated attacker to disclose sensitive information. As a result,...

CVE-2022-29825

Use of Hard-coded Password vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 GOT2000 versions from 1.122C to 1.290C, and MT Works2 versions from 1.100E to 1.200J allows an unauthenticated attacker to disclose sensitive information. As a result,...

PT-2022-19860 · Mitsubishi · Gx Works3 +2

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric GX Works3 versions 1.000A through 1.090U GT Designer3 Version1 GOT2000 versions 1.122C through 1.290C Motion Control Setting GX Works3 related software versions 1.035M through 1.042U Description: The issue allows a remote...

PT-2022-6456 · Mitsubishi · Mitsubishi Electric Gx Works3 +1

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U GT Designer3 Version1 GOT2000 versions from 1.122C to 1.290C Description: The issue is related to the use of hard-coded passwords in the software, allowing an unauthenticated attack...

PT-2022-6320 · Mitsubishi · Gx Works3

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Corporation GX Works3 versions from 1.015R to 1.095Z Description: The issue is related to the use of hard-coded passwords in the software, allowing a remote unauthenticated attacker to obtain information about the project...

Dell PowerPath Management Appliance 信任管理问题漏洞

Dell PowerPath Management Appliance is a PowerPath host management application from Dell USA that offers two models: a virtual machine-based appliance and a Docker containerized appliance. A security vulnerability exists in the Dell PowerPath Management Appliance version 3.3, all versions 3.2,...

CVE-2022-44725

OPC Foundation Local Discovery Server LDS through 1.04.403.478 uses a hard-coded file path to a configuration file. This allows a normal user to create a malicious file that is loaded by LDS running as a high-privilege user...

CVE-2022-44725

OPC Foundation Local Discovery Server LDS through 1.04.403.478 uses a hard-coded file path to a configuration file. This allows a normal user to create a malicious file that is loaded by LDS running as a high-privilege user...

PT-2022-6840 · Opc Foundation · Opc Foundation Local Discovery Server

Name of the Vulnerable Software and Affected Versions: OPC Foundation Local Discovery Server LDS versions 1.04.403.478 and earlier Description: The issue is related to the incorrect assignment of permissions for a critical resource in the Local Discovery Server LDS of the Siemens software. This...

Warning: New RapperBot Campaign Aims to Launch DDoS Attacks at Game Servers

Cybersecurity researchers have unearthed new samples of malware called RapperBot that are being used to build a botnet capable of launching Distributed Denial of Service DDoS attacks against game servers. "In fact, it turns out that this campaign is less like RapperBot than an older campaign that...

The vulnerability in the web interface for managing the Cisco AsyncOS operating system of the Cisco Email Security Appliance (ESA) security email system, the Cisco Secure Email and Web Manager content protection device, and the Cisco Secure Web Appliance (formerly Cisco Web Security Appliance (WSA)) web gateway allows a perpetrator to enhance their privileges.

The vulnerability in the web interface for managing the Cisco AsyncOS operating system of the Cisco Email Security Appliance ESA, the Cisco Secure Email and Web Manager, and the Cisco Secure Web Appliance formerly Cisco Web Security Appliance WSA relates to the use of a hard-coded cryptographic...

PT-2022-6358 · Dell Emc · Dell Emc Scg Policy Manager

Name of the Vulnerable Software and Affected Versions: Dell EMC SCG Policy Manager versions 5.10 through 5.12 Description: The issue is related to the use of a hard-coded cryptographic key in the Policy Manager software of Dell Secure Connect Gateway SCG. An attacker with knowledge of the...

PT-2022-6360 · Dell Emc · Dell Emc Scg Policy Manager

Name of the Vulnerable Software and Affected Versions: Dell EMC SCG Policy Manager versions 5.10 through 5.12 Description: The issue is related to a hard-coded password vulnerability. An attacker with knowledge of the hard-coded credentials could exploit this to login to the system and gain admin...

PT-2022-6348 · Dell Emc · Dell Emc Scg Policy Manager

Name of the Vulnerable Software and Affected Versions: Dell EMC SCG Policy Manager versions 5.10 through 5.12 Description: The issue is related to a Hard-coded Cryptographic Key, which could allow an attacker with knowledge of the hard-coded sensitive information to potentially exploit this...

Kaden Vodomery Kaden PICOFLUX AiR 信任管理问题漏洞

Kaden Vodomery Kaden PICOFLUX AiR is an electronic cold water meter from the Czech company Kaden Vodomery. Measurement data is transmitted via radio and readings are taken online. The Kaden Vodomery Kaden PICOFLUX AiR suffers from a trust management issue vulnerability that stems from the fact th...

Beijing Missy Technology Co., Ltd. play whale app has sensitive information hard-coding vulnerability

Play Whale app is a sound dating software. Ltd. play whale app there is sensitive information hard-coded vulnerability, attackers can use the vulnerability to obtain sensitive information...