Cleartext Transmission of Sensitive Information vulnerability due to the use of Basic Authentication for HTTP connections in Mitsubishi Electric consumer electronics products (PHOTOVOLTAIC COLOR MONITOR ECO-GUIDE, HEMS adapter, Wi-Fi Interface, Air Conditioning, Induction hob, Mitsubishi Electric HEMS Energy Measurement Unit, Refrigerator, Remote control with Wi-Fi Interface, BATHROOM THERMO VENTILATOR, Rice cooker, Mitsubishi Electric HEMS control adapter, Energy Recovery Ventilator, Smart Switch, Ventilating Fan, Range hood fan, Energy Measurement Unit and Air Purifier) allows a remote unauthenticated attacker to disclose information in the products or cause a denial of service (DoS) condition as a result by sniffing credential information (username and password). The wide range of models/versions of Mitsubishi Electric consumer electronics products are affected by this vulnerability. As for the affected product models/versions, see the Mitsubishi Electric's advisory which is listed in [References] section.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HMitsubishielectric Mac 557if E
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 557if E1
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 557if E1 Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 557if E Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 558if E
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 558if E1
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 558if E1 Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 558if E Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 559if E
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 559if E1
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 559if E1 Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 559if E Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 566ifb E
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 566ifb E Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 567ifb2 E
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 567ifb2 E Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 567ifb E
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 567ifb E Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 568ifb2 E
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 568ifb2 E Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 568ifb3 E
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 568ifb3 E Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 568ifb E
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 568ifb E Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 568if E
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 568if E Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Mac 576if E1
HWMitsubishielectricwszystkie wersjeMitsubishielectric Mac 576if E1 Firmware
OSMitsubishielectricwszystkie wersjeMitsubishielectric Msz Ap25\/35\/42\/50vgk E6
HWMitsubishielectricwszystkie wersjeMitsubishielectric Msz Ap25\/35\/42\/50vgk E6 Firmware
OSMitsubishielectricwszystkie wersje
Powiązane podatności
Unsafe Reflection w oprogramowaniu Mitsubishi Electric — zdalne wykonanie kodu
Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation MELSEC-F Series ...
Improper Authentication vulnerability in Mitsubishi Electric Corporation MELSEC-F Series main modules allows a...
Incorrect Default Permissions vulnerability in Mitsubishi Electric Corporation multiple FA engineering softwar...
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series a...