👾 Join us August 4–10 in Las Vegas for Hacker Summer Camp! Learn More

Start Free Book Demo

Platform
- Overview
  Complete security visibility across IT, OT, IoT, cloud, mobile, and remote assets.
  
  Total Attack Surface Visibility
  
  Full-Spectrum Exposure Detection
  
  Risk Prioritization & Insights
  
  Compliance, Reporting, & KPIs
  
  Fast Deployment & Scalability
- Integrations
  runZero seamlessly integrates with a wide variety of tools, enhancing network visibility, enriching asset data, and uncovering control gaps.
- Community Edition
  Our completely free version of the runZero Platform is ideal for home use and environments with fewer than 100 assets.
Welcome to the New Era of Exposure Management

Check out our launch video to see how we're fixing what’s broken with vulnerability management & overcoming persistent problems.

Watch Now
Solutions
- Solutions
  Gain visibility, control the unknowns, and ensure compliance with confidence.
  
  Incident Response
  
  Unmanaged & Unknowns
  
  Vulnerability Management
  
  Mergers & Acquisitions
  
  Compliance & Insurance
- Regulatory Compliance
  Ensure compliance and stay resilient against evolving cyber threats.
  
  DORA
  
  NIST CSF & 800-171
  
  NIS2
  
  NYDFS
  
  PCI DSS
It’s Time To Move Away From Legacy Vulnerability Management

Legacy vulnerability scanners were built for a different time — when networks had clear perimeters, assets were reachable, and credential-based scanning was feasible across the board. That world doesn’t exist anymore.

Read More
Resources
- Resource Center
  Dive into a treasure trove of resources to expand your exposure management knowledge.
  
  Reports
  
  Webcasts
  
  Solution Briefs
- runZero Research
  Explore the world of exposure management through the runZero lens.
  
  Research Blogs
  
  Rapid Responses
  
  runZero Hour
- runZero Blog
  See what's happening at runZero and read up on the latest ideas, opinions, and articles from our experts and researchers.
  
  The New Era of Exposure Management
  
  Read About Our New Product Release
- Support Resources
  Everything you need to maximize your experience with the runZero Platform.
  
  Documentation
  
  REST API
  
  Open Source
  
  Changelog
Available On-Demand: Reshaping Security with Open Source

We sat down with the minds behind ProjectDiscovery: Rishiraj Sharma and Sandeep Singh, the co-founders behind the highly effective Nuclei scanner. Watch our conversation about how open source is reshaping security and how runZero and ProjectDiscovery are working together to build safer, smarter scanning.

Watch Now
Pricing
Customers
- Our Customers
  Our customers are everything. We're super proud to be trusted by leading organizations around the globe to help them improve their security.
- Case Studies
  See how runZero has empowered security teams to take control of their networks, uncover their unknowns, and save significant time and money.
- Testimonials
  Read reviews of the runZero Platform and see how teams have improved their security with our technology.
New Report Published by the U.S. Department of Energy

CECA evaluations confirm runZero's active scanning enhances ICS visibility without performance impact on SCADA.

Read the Report
Partners
- Infinity Partner Program
  See how we can work together to provide best-in-class security solutions and outcomes for our joint customers.
- Partner Directory
  Explore our directory of trusted (and awesome) partners.
- Partner Sign In
  Sign in to our Infinity Partner Portal.
Join our Infinity Partner Program

Designed with a partner-first mindset, the runZero Infinity Partner Program offers incredibly valuable resources, relationships, and rewards to partners who choose to grow their business with us.

Become a runZero Partner
About
- About Us
  Wondering who the heck are these people? Meet the team and get the story behind runZero... once upon a time called Rumble.
- Events
  Track down runZero Yetis in the wild! Join us in-person or virtually at one of our upcoming events.
- Investors
  Meet the cybersecurity investors, trailblazers, and innovators who help us navigate our journey and the evolving security landscape.
- Newsroom
  Read the latest articles, announcements, and press releases from runZero.
- Careers
  Want to join our forces? We're looking for bright minds and passionate souls who want to write the next chapter in exposure management.
Join us for Hacker Summer Camp!

We’re headed to Las Vegas! Join us August 4–10 for a week of action at BSides, Black Hat, DEF CON, and more. We've got six talks to take in and crews in every venue you'll want to visit – it's going to be an epic week with lots of great adventures! We can't wait to see you!

See All Summer Camp Events
Support
Contact Us
Sign In

👾 Join us August 4–10 in Las Vegas for Hacker Summer Camp! Learn More

Overview
Complete security visibility across IT, OT, IoT, cloud, mobile, and remote assets.
Integrations
runZero seamlessly integrates with a wide variety of tools, enhancing network visibility, enriching asset data, and uncovering control gaps.
Community Edition
Our completely free version of the runZero Platform is ideal for home use and environments with fewer than 100 assets.

Welcome to the New Era of Exposure Management

Check out our launch video to see how we're fixing what’s broken with vulnerability management & overcoming persistent problems.

Watch Now

Solutions
Gain visibility, control the unknowns, and ensure compliance with confidence.
Regulatory Compliance
Ensure compliance and stay resilient against evolving cyber threats.
- DORA
- NIST CSF & 800-171
- NIS2
- NYDFS
- PCI DSS

It’s Time To Move Away From Legacy Vulnerability Management

Legacy vulnerability scanners were built for a different time — when networks had clear perimeters, assets were reachable, and credential-based scanning was feasible across the board. That world doesn’t exist anymore.

Read More

Resource Center
Dive into a treasure trove of resources to expand your exposure management knowledge.
runZero Research
Explore the world of exposure management through the runZero lens.
runZero Blog
See what's happening at runZero and read up on the latest ideas, opinions, and articles from our experts and researchers.
- The New Era of Exposure Management
- Read About Our New Product Release
Support Resources
Everything you need to maximize your experience with the runZero Platform.

Available On-Demand: Reshaping Security with Open Source

We sat down with the minds behind ProjectDiscovery: Rishiraj Sharma and Sandeep Singh, the co-founders behind the highly effective Nuclei scanner. Watch our conversation about how open source is reshaping security and how runZero and ProjectDiscovery are working together to build safer, smarter scanning.

Watch Now

Our Customers
Our customers are everything. We're super proud to be trusted by leading organizations around the globe to help them improve their security.
Case Studies
See how runZero has empowered security teams to take control of their networks, uncover their unknowns, and save significant time and money.
Testimonials
Read reviews of the runZero Platform and see how teams have improved their security with our technology.

New Report Published by the U.S. Department of Energy

CECA evaluations confirm runZero's active scanning enhances ICS visibility without performance impact on SCADA.

Read the Report

About Us
Wondering who the heck are these people? Meet the team and get the story behind runZero... once upon a time called Rumble.
Events
Track down runZero Yetis in the wild! Join us in-person or virtually at one of our upcoming events.
Investors
Meet the cybersecurity investors, trailblazers, and innovators who help us navigate our journey and the evolving security landscape.
Newsroom
Read the latest articles, announcements, and press releases from runZero.
Careers
Want to join our forces? We're looking for bright minds and passionate souls who want to write the next chapter in exposure management.

Join us for Hacker Summer Camp!

We’re headed to Las Vegas! Join us August 4–10 for a week of action at BSides, Black Hat, DEF CON, and more. We've got six talks to take in and crews in every venue you'll want to visit – it's going to be an epic week with lots of great adventures! We can't wait to see you!

See All Summer Camp Events

Infinity Partner Program
See how we can work together to provide best-in-class security solutions and outcomes for our joint customers.
Partner Directory
Explore our directory of trusted (and awesome) partners.
Partner Sign In
Sign in to our Infinity Partner Portal.

Join our Infinity Partner Program

Designed with a partner-first mindset, the runZero Infinity Partner Program offers incredibly valuable resources, relationships, and rewards to partners who choose to grow their business with us.

Become a runZero Partner

On This Page:

Latest Mitsubishi Electric Air Conditioning Systems vulnerability
What is the impact?
Are any updates or workarounds available?
How do I find Mitsubishi Electric Air Conditioning Systems with runZero?

How to find Mitsubishi Electric Air Conditioning Systems

Matthew Kienow

|

Updated June 27, 2025, 5:52pm EDT

Latest Mitsubishi Electric Air Conditioning Systems vulnerability #

An authentication bypass vulnerability has been disclosed in certain models and versions of Mitsubishi Electric air conditioning systems. This vulnerability has been designated CVE-2025-3699 and has been rated critical with a CVSS score of 9.8.

The following models and versions are affected

G-50 versions 3.37 and prior
G-50-W versions 3.37 and prior
G-50A versions 3.37 and prior
GB-50 versions 3.37 and prior
GB-50A versions 3.37 and prior
GB-24A versions 9.12 and prior
G-150AD versions 3.21 and prior
AG-150A-A versions 3.21 and prior
AG-150A-J versions 3.21 and prior
GB-50AD versions 3.21 and prior
GB-50ADA-A versions 3.21 and prior
GB-50ADA-J versions 3.21 and prior
EB-50GU-A versions 7.11 and prior
EB-50GU-J versions 7.11 and prior
AE-200J versions 8.01 and prior
AE-200A versions 8.01 and prior
AE-200E versions 8.01 and prior
AE-50J versions 8.01 and prior
AE-50A versions 8.01 and prior
AE-50E versions 8.01 and prior
EW-50J versions 8.01 and prior
EW-50A versions 8.01 and prior
EW-50E versions 8.01 and prior
TE-200A versions 8.01 and prior
TE-50A versions 8.01 and prior
TW-50A versions 8.01 and prior
CMS-RMD-J versions 1.40 and prior

What is the impact? #

Successful exploitation of the vulnerability would allow an adversary to bypass authentication and gain control over the air conditioning system or disclose information from them. The disclosed information can be used to tamper with the firmware of the affected system.

Are any updates or workarounds available? #

There are no planned versions to fix the issue so please follow Mitsubishi Electric's mitigations and configure systems so they are not exposed to the public Internet. Mitsubishi Electric is currently preparing improved versions of the following products to help mitigate the vulnerability. Upgrade affected systems to the new versions when available.

AE-200J
AE-200A
AE-200E
AE-50J
AE-50A
AE-50E
EW-50J
EW-50A
EW-50E
TE-200A
TE-50A
TW-50A

How do I find Mitsubishi Electric Air Conditioning Systems with runZero? #

From the Asset Inventory, use the following query to locate potentially impacted assets:

hw:"Mitsubishi%Air Condition%"

Written by Matthew Kienow

Matthew Kienow is a software engineer and security researcher. Matthew previously worked on the Recog recognition framework, AttackerKB as well as Metasploit's MSF 5 APIs. He has also designed, built, and successfully deployed many secure software solutions; however, often he enjoys breaking them instead. He has presented his research at various security conferences including DerbyCon, Hack In Paris, and CarolinaCon. His research has been cited by CSO, Threatpost and SC Magazine.

More about Matthew Kienow

Explore more

Watch Now • On Demand

Vulnerability management is broken: what's the fix?

HD Moore and Omdia analyst Rik Turner discuss why traditional vulnerability management is struggling in modern IT infrastructures, why CVEs don’t tell the full story, and why prioritization alone isn’t enough to close critical security gaps.

runZero Hour, Episode 17

The State of Vuln Management, Our Approach, and a Deep Dive into New Risk Findings

On this special edition of runZero Hour, join VP of Security Research Tod Beardsley and Security Research Director Rob King for a deep dive into the future of exposure management.

Product Release

Tackling the New Era of Exposure Management

Fixing what’s broken with legacy tools and overcoming decades-old problems requires a new approach. Dive into how we do it at runZero.

The Unreasonable Effectiveness of Inside Out Attack Surface Management

HD Moore, founder of runZero (and previously Metasploit), presents new research that will forever redefine how you approach attack surface management.

See Results in Minutes

See & secure your total attack surface. Even the unknowns & unmanageable.

Try runZero for Free

© Copyright 2025 runZero, Inc. All Rights Reserved

Join us August 4–10 in Vegas for Hacker Summer Camp!

See Summer Camp Events