CVE-2022-40269
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-40269
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Authentication Bypass by Spoofing vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT27 model versions 01.14.000 to 01.47.000, Mitsubishi Electric Corporation GOT2000 Series GT25 model versions 01.14.000 to 01.47.000 and Mitsubishi Electric Corporation GT SoftGOT2000 versions 1.265B to 1.285X allows a remote unauthenticated attacker to disclose sensitive information from users' browsers or spoof legitimate users by abusing inappropriate HTML attributes.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用欺骗进行的认证绕过
Source: NVD (National Vulnerability Database)
Vulnerability Title
Mitsubishi Electric GOT2000 和GT SoftGOT2000 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Mitsubishi Electric GOT2000和Mitsubishi Electric GT SoftGOT2000都是日本三菱电机(Mitsubishi Electric)公司的产品。Mitsubishi Electric GOT2000是一款GOT2000系列图形操作终端。Mitsubishi Electric GT SoftGOT2000是一款在电脑和电脑上运行的 HMI 软件。可监控并操作通过网络与电脑或电脑连接的 FA 机器的信息。 Mitsubishi Electric GOT2000
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Mitsubishi Electric Corporation | GOT2000 Series GT27 model | 01.14.000 to 01.47.000 | - | |
| Mitsubishi Electric Corporation | GOT2000 Series GT25 model | 01.14.000 to 01.47.000 | - | |
| Mitsubishi Electric Corporation | GT SoftGOT2000 | 1.265B to 1.285X | - |
II. Public POCs for CVE-2022-40269
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2022-40269
请登录查看更多情报信息。
Same Patch Batch · Mitsubishi Electric Corporation · 2023-02-02 · 3 CVEs total
| CVE-2022-33323 | 7.5 HIGH | Authentication Bypass Vulnerability in Robot Controller of MELFA SD/SQ series and F-series |
| CVE-2022-40268 | 6.1 MEDIUM | Mitsubishi Electric GOT2000和GT SoftGOT2000 安全漏洞 |
IV. Related Vulnerabilities
Same vendor: Mitsubishi Electric Corporation
- CVE-2025-14816
Information Disclosure, Tampering, and Denial-of-Service Vul - CVE-2025-14815
Information Disclosure, Tampering, and Denial-of-Service Vul - CVE-2025-2399
Denial of Service (DoS) Vulnerability in Mitsubishi Electric - CVE-2026-1876
Denial-of-Service (DoS) vulnerability in Ethernet function o - CVE-2026-1875
Denial-of-Service (DoS) vulnerability in Ethernet function o
Same weakness: CWE-290
- CVE-2021-47923
OpenCart 3.0.3.8 Session Fixation via OCSESSID Cookie - CVE-2026-42354
Sentry: Improper authentication on SAML SSO process allows u - CVE-2026-44118
OpenClaw < 2026.4.22 - Owner Context Spoofing via Bearer Tok - CVE-2026-39858
Traefik: Forwarded alias spoofing top pre-auth decision bypa - CVE-2018-25317
Tenda W3002R/A302/W309R V5.07.64_en Cookie Session Weakness
V. Comments for CVE-2022-40269
No comments yet