High severity8.6NVD Advisory· Published Nov 25, 2022· Updated Jun 17, 2026
CVE-2022-25164
CVE-2022-25164
Description
Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Mitsubishi Electric MX OPC UA Module Configurator-R versions 1.08J and prior allows a remote unauthenticated attacker to disclose sensitive information. As a result, unauthenticated attackers can gain unauthorized access to the MELSEC CPU module and the MELSEC OPC UA server module.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Range: 1.000A - 1.095Z
<=1.08J+ 1 more
- (no CPE)range: <=1.08J
- (no CPE)range: 1.08J and prior
- Range: from 1.000A to 1.095Z
Patches
Vulnerability mechanics
References
3- jvn.jp/vu/JVNVU97244961/index.htmlnvdThird Party AdvisoryVDB Entry
- www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-015_en.pdfnvdMitigationVendor Advisory
- www.cisa.gov/uscert/ics/advisories/icsa-22-333-05nvd
News mentions
0No linked articles in our index yet.