{"uuid": "dd3a337a-7227-46a9-b000-ce5530f36aa9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-33322", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14311", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-33322\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Cross-site scripting vulnerability in Mitsubishi Electric consumer electronics products (Air Conditioning, Wi-Fi Interface, Refrigerator, HEMS adapter, Remote control with Wi-Fi Interface, BATHROOM THERMO VENTILATOR, Rice cooker, Mitsubishi Electric HEMS control adapter, Energy Recovery Ventilator, Smart Switch and Air Purifier) allows a remote unauthenticated attacker to execute an malicious script on a user's browser to disclose information, etc. The wide range of models/versions of Mitsubishi Electric consumer electronics products are affected by this vulnerability. As for the affected product models/versions, see the Mitsubishi Electric's advisory which is listed in [References] section.\n\n\n\ud83d\udccf Published: 2022-11-08T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-01T14:38:35.036Z\n\ud83d\udd17 References:\n1. https://jvn.jp/vu/JVNVU96767562/index.html\n2. https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2022-011_en.pdf\n3. https://www.mitsubishielectric.co.jp/psirt/vulnerability/pdf/2022-011.pdf", "creation_timestamp": "2025-05-01T15:15:33.000000Z"}