PT-2025-35446 · Mitsubishi · Melsec Iq-F Series Cpu Module
Loc Nguyen
+3
·
Published
2025-09-01
·
Updated
2025-09-01
·
CVE-2025-7731
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module (affected versions not specified)
Description
A cleartext transmission issue exists in the Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module. A remote, unauthenticated attacker can intercept SLMP communication messages to obtain credential information. This allows the attacker to read or write device values and potentially stop program operations.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Cleartext Transmission of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Melsec Iq-F Series Cpu Module