You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cwe-319
About this tag
The tag cwe-319 covers content related to the Common Weakness Enumeration entry for cleartext transmission of sensitive information. On WindowsForum.com, this tag is used in discussions about industrial control system vulnerabilities, such as the Mitsubishi Electric MELSEC iQ-F series flaw (CVE-2025-7731) where SLMP protocol transmits credentials in cleartext. The content emphasizes urgent OT security fixes and the intersection of Windows-based IT/OT environments with industrial cybersecurity. Recurring themes include network-accessible weaknesses, credential exposure, and the need for patching or configuration changes to mitigate risks. This tag is relevant for security professionals and system administrators managing Windows-integrated industrial systems.
A remote information‑disclosure weakness in Mitsubishi Electric’s MELSEC iQ‑F series CPU modules has been publicly described as a cleartext transmission of sensitive information over SLMP, enabling an attacker with network access to capture credentials and potentially read/write device values or...
cisa
cve-2025-7731
cwe-319
edr
industrial control systems
information disclosure
ip filtering
melsec iq-f
mitsubishi electric
network segmentation
ot security
plc vulnerabilities
remote access
slmp
vpn mitigation
windows ot
windows security