CISA 2026-04-07

Mitsubishi Electric GENESIS64 and ICONICS Suite products

Machine-generated analysis · WAYSCloud LLM

SQL Server credentials stored in plaintext when local SQLite caching is enabled with SQL authentication. Affects multiple Mitsubishi Electric industrial software suites.

Context

GENESIS64 and ICONICS Suite are industrial automation software products from Mitsubishi Electric. The advisory states that when SQL authentication is used with SQLite local caching, credentials are stored unencrypted in a local file. These products are used in critical manufacturing sectors according to the source.

Operator considerations

Check: For affected versions of GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, MC Works 64, and GENESIS
Isolate: Restrict access to systems running affected software to trusted users only
Log: Monitor for unauthorized access attempts to SQL Server instances used by these products

From Cybersecurity and Infrastructure Security Agency ↗

Successful exploitation of these vulnerabilities could allow a local attacker to disclose SQL Server credentials used by the affected products and use them to disclose, tamper with, or destroy data, or to cause a denial-of-service (DoS) condition on the system.

The following versions of Mitsubishi Electric GENESIS64 and ICONICS Suite products are affected:

GENESIS64

Read the full advisory on CISA →