Rewterz Threat Alert – APT38 Hidden Cobra aka Lazarus – Active IOCs
November 28, 2022Rewterz Threat Alert – LockBit Ransomware Being Distributed Using Similar Filenames – Active IOCs
November 28, 2022Severity
Medium
Analysis Summary
CVE-2022-25164 CVSS:8.6
Mitsubishi Electric Corporation GX Works3 and MX OPC UA Module Configurator-R could allow a remote attacker to obtain sensitive information, caused by the cleartext storage of sensitive information in memory vulnerability. By sending a specially-crafted request, an attacker could exploit this vulnerability to disclose sensitive information.
CVE-2022-29825 CVSS:6.8
Mitsubishi Electric Corporation GX Works3 could allow a remote attacker to obtain sensitive information, caused by the use of hard-coded password vulnerability. By sending a specially-crafted request, an attacker could exploit this vulnerability to disclose sensitive information.
CVE-2022-29826 CVSS:6.8
Mitsubishi Electric Corporation GX Works3 could allow a remote attacker to obtain sensitive information, caused by the cleartext storage of sensitive information in memory vulnerability. By sending a specially-crafted request, an attacker could exploit this vulnerability to disclose sensitive information.
CVE-2022-29827 CVSS:6.8
Mitsubishi Electric Corporation GX Works3 could allow a remote attacker to obtain sensitive information, caused by the use of hard-coded password vulnerability. By sending a specially-crafted request, an attacker could exploit this vulnerability to disclose sensitive information.
CVE-2022-29828 CVSS:6.8
Mitsubishi Electric Corporation GX Works3 could allow a remote attacker to obtain sensitive information, caused by the use of hard-coded password vulnerability. By sending a specially-crafted request, an attacker could exploit this vulnerability to disclose sensitive information.
CVE-2022-29829 CVSS:6.8
Mitsubishi Electric Corporation GX Works3 could allow a remote attacker to obtain sensitive information, caused by the use of hard-coded password vulnerability. By sending a specially-crafted request, an attacker could exploit this vulnerability to disclose sensitive information.
CVE-2022-29830 CVSS:9.1
Mitsubishi Electric Corporation GX Works3 could allow a remote attacker to obtain sensitive information, caused by the use of hard-coded password vulnerability. By sending a specially-crafted request, an attacker could exploit this vulnerability to disclose or tamper with sensitive information.
CVE-2022-29833 CVSS:6.8
Mitsubishi Electric Corporation GX Works3 could allow a remote attacker to obtain sensitive information, caused by the insufficiently protected credentials vulnerability. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain sensitive information and access to MELSEC safety CPU modules illegally.
CVE-2022-29832 CVSS:3.7
Mitsubishi Electric Corporation GX Works3 could allow a remote attacker to obtain sensitive information, caused by the cleartext storage of sensitive information in memory vulnerability. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain information about the project file for MELSEC safety CPU modules.
CVE-2022-29831 CVSS:7.5
Mitsubishi Electric Corporation GX Works3 could allow a remote attacker to obtain sensitive information, caused by the use of hard-coded password vulnerability. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain information about the project file for MELSEC safety CPU modules.
Impact
Information Disclosure
Indicators Of Compromise
CVE
- CVE-2022-25164
- CVE-2022-29825
- CVE-2022-29826
- CVE-2022-29827
- CVE-2022-29828
- CVE-2022-29829
- CVE-2022-29830
- CVE-2022-29833
- CVE-2022-29832
- CVE-2022-29831
Affected Vendors
Mitsubishi Electric
Affected Products
- Mitsubishi Electric GX Works3 1.086Q
- Mitsubishi Electric MX OPC UA Module Configurator-R
- Mitsubishi Electric GX Works3 1.015R
Remediation
Refer to Mitsubishi Electric Website for patch, upgrade or suggested workaround information.