CVE-2022-24296

Severity CVSS v4.0:
Pending analysis
Type:
CWE-327 Use of a Broken or Risky Cryptographic Algorithm
Publication date:
08/06/2022
Last modified:
17/06/2022

Description

Use of a Broken or Risky Cryptographic Algorithm vulnerability in Air Conditioning System G-150AD Ver. 3.21 and prior, Air Conditioning System AG-150A-A Ver. 3.21 and prior, Air Conditioning System AG-150A-J Ver. 3.21 and prior, Air Conditioning System GB-50AD Ver. 3.21 and prior, Air Conditioning System GB-50ADA-A Ver. 3.21 and prior, Air Conditioning System GB-50ADA-J Ver. 3.21 and prior, Air Conditioning System EB-50GU-A Ver. 7.10 and prior, Air Conditioning System EB-50GU-J Ver. 7.10 and prior, Air Conditioning System AE-200J Ver. 7.97 and prior, Air Conditioning System AE-200A Ver. 7.97 and prior, Air Conditioning System AE-200E Ver. 7.97 and prior, Air Conditioning System AE-50J Ver. 7.97 and prior, Air Conditioning System AE-50A Ver. 7.97 and prior, Air Conditioning System AE-50E Ver. 7.97 and prior, Air Conditioning System EW-50J Ver. 7.97 and prior, Air Conditioning System EW-50A Ver. 7.97 and prior, Air Conditioning System EW-50E Ver. 7.97 and prior, Air Conditioning System TE-200A Ver. 7.97 and prior, Air Conditioning System TE-50A Ver. 7.97 and prior and Air Conditioning System TW-50A Ver. 7.97 and prior allows a remote unauthenticated attacker to cause a disclosure of encrypted message of the air conditioning systems by sniffing encrypted communications.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:mitsubishi:ae-200a_firmware:*:*:*:*:*:*:*:* 7.97 (including)
cpe:2.3:h:mitsubishi:ae-200a:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:ae-200e_firmware:*:*:*:*:*:*:*:* 7.97 (including)
cpe:2.3:h:mitsubishi:ae-200e:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:ae-200j_firmware:*:*:*:*:*:*:*:* 7.97 (including)
cpe:2.3:h:mitsubishi:ae-200j:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:ae-50a_firmware:*:*:*:*:*:*:*:* 7.97 (including)
cpe:2.3:h:mitsubishi:ae-50a:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:ae-50e_firmware:*:*:*:*:*:*:*:* 7.97 (including)
cpe:2.3:h:mitsubishi:ae-50e:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:ae-50j_firmware:*:*:*:*:*:*:*:* 7.97 (including)
cpe:2.3:h:mitsubishi:ae-50j:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:ag-150a-a_firmware:*:*:*:*:*:*:*:* 3.21 (including)
cpe:2.3:h:mitsubishi:ag-150a-a:-:*:*:*:*:*:*:*
cpe:2.3:o:mitsubishi:ag-150a-j_firmware:*:*:*:*:*:*:*:* 3.21 (including)