Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:31 p.m.12 views

CVE-2022-25155

Use of Password Hash Instead of Password for Authentication vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5UC CPU all versions, Mitsubishi Electric MELSEC iQ-F series FX5UJ CPU all versions, Mitsubishi Electric MELSEC iQ-R series R00/01/02CPU all versions, Mitsubishi Electric MELSEC...

8.1CVSS7.3AI score0.02051EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/04/28 12:0 a.m.47 views

Mitsubishi Electric FA Products Use of Password Hash Instead of Password For Authentication (CVE-2022-25155)

Use of Password Hash Instead of Password for Authentication vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5UC CPU all versions and Mitsubishi Electric MELSEC iQ-F series FX5UJ CPU all versions allows a remote unauthenticated attacker to login to the product by replaying an eavesdroppe...

8.1CVSS6.9AI score0.02051EPSS
Exploits0References4
NVD
NVD
added 2022/04/01 11:15 p.m.20 views

CVE-2022-25155

Use of Password Hash Instead of Password for Authentication vulnerability in Mitsubishi Electric MELSEC iQ-F series FX5UC CPU all versions, Mitsubishi Electric MELSEC iQ-F series FX5UJ CPU all versions, Mitsubishi Electric MELSEC iQ-R series R00/01/02CPU all versions, Mitsubishi Electric MELSEC...

8.1CVSS0.02051EPSS
Exploits0References3
CVE
CVE
added 2022/04/01 10:17 p.m.94 views

CVE-2022-25155

CVE-2022-25155 affects Mitsubishi Electric MELSEC iQ-F/R series and related Q/L families. It enables a remote unauthenticated attacker to log in by replaying an eavesdropped password hash, due to use of a password hash instead of the actual password for authentication. Affected products include F...

8.1CVSS8.2AI score0.02051EPSS
Exploits0References3Affected Software1
ICS
ICS
added 2022/03/31 12:0 a.m.81 views

Mitsubishi Electric FA Products

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely Vendor: Mitsubishi Electric Equipment: FA products Vulnerabilities: Use of Password Hash Instead of Password for Authentication, Use of Weak Hash, Cleartext Storage of Sensitive Information, Authentication Bypass by Capture-replay...

9.1CVSS7.9AI score0.0229EPSS
Exploits0References4
Rows per page
Query Builder