Information Disclosure Vulnerability in GT Designer3_CVE-2025-11009

5.1 / 10

MEDIUM

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Description

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GT Designer3 Version1 (GOT2000) all versions and Mitsubishi Electric GT Designer3 Version1 (GOT1000) all versions allows a local unauthenticated attacker to obtain plaintext credentials from the project file for GT Designer3. This could allow the attacker to operate illegally GOT2000 series or GOT1000 series by using the obtained credentials.

Basic Information

ID CVE-2025-11009

Source Mitsubishi

Published Dec 17, 2025 at 00:55

Affected Product

Vendor Mitsubishi Electric Corporation

Product GT Designer3 Version1 (GOT2000)

Version all versions

Affected Versions Mitsubishi Electric Corporation GT Designer3 Version1 (GOT2000) all versions
Mitsubishi Electric Corporation GT Designer3 Version1 (GOT1000) all versions

CWE Classification

CWE-312

References

{
    "lastseen": "",
    "description": "Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GT Designer3 Version1 (GOT2000) all versions and Mitsubishi Electric GT Designer3 Version1 (GOT1000) all versions allows a local unauthenticated attacker to obtain plaintext credentials from the project file for GT Designer3. This could allow the attacker to operate illegally GOT2000 series or GOT1000 series by using the obtained credentials.",
    "published": "2025-12-17T00:55:58.914Z",
    "modified": "2025-12-17T00:55:58.914Z",
    "type": "cve",
    "title": "Information Disclosure Vulnerability in GT Designer3",
    "source": "Mitsubishi",
    "references": "https://www.mitsubishielectric.com/psirt/vulnerability/pdf/2025-017_en.pdf\nhttps://jvn.jp/vu/JVNVU99629801/",
    "id": "CVE-2025-11009",
    "bulletinFamily": "",
    "cwe": [
        "CWE-312"
    ],
    "cvelist": null,
    "sourceData": "Mitsubishi Electric Corporation GT Designer3 Version1 (GOT2000) all versions\nMitsubishi Electric Corporation GT Designer3 Version1 (GOT1000) all versions",
    "sourceHref": "",
    "cvss": {
        "score": 5.1,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "GT Designer3 Version1 (GOT2000)",
    "version": "all versions",
    "vendor": "Mitsubishi Electric Corporation",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}