Mitsubishielectric Coreos vulnerabilities
12 known vulnerabilities affecting mitsubishielectric/coreos.
Total CVEs
12
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH7
Vulnerabilities
Page 1 of 1
CVE-2020-5647P2CRITICALCVSS 9.8≤ 05.65.00.bd2020-11-06
CVE-2020-5647 [CRITICAL] CVE-2020-5647: Improper access control vulnerability in TCP/IP function included in the firmware of GT14 Model of G
Improper access control vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QMBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QLBDE CoreOS version ’05.65.00.BD’ and earlier, GT1455HS-QTBDE CoreOS version ’05.65.00.BD’ and earlier, and GT1450HS-QMBDE Co
nvd
CVE-2020-5644P2CRITICALCVSS 9.8≤ 05.65.00.bd2020-11-06
CVE-2020-5644 [CRITICAL] CWE-120 CVE-2020-5644: Buffer overflow vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000
Buffer overflow vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE Cor
nvd
CVE-2020-5648P2CRITICALCVSS 9.8≤ 05.65.00.bd2020-11-06
CVE-2020-5648 [CRITICAL] CWE-88 CVE-2020-5648: Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in
Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBD
nvd
CVE-2020-5599P2CRITICALCVSS 9.8≤ y2020-07-07
CVE-2020-5599 [CRITICAL] CWE-88 CVE-2020-5599: TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains an improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability, which may allow a remote attacker to stop the network functions of the prod
nvd
CVE-2020-5595P3CRITICALCVSS 9.8≤ y2020-07-07
CVE-2020-5595 [CRITICAL] CWE-120 CVE-2020-5595: TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains a buffer overflow vulnerability, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.
nvd
CVE-2020-5646P3HIGHCVSS 7.5≤ 05.65.00.bd2020-11-06
CVE-2020-5646 [HIGH] CWE-476 CVE-2020-5646: NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of GT14 Model of
NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QM
nvd
CVE-2020-5649P3HIGHCVSS 7.5≤ 05.65.00.bd2020-11-06
CVE-2020-5649 [HIGH] CVE-2020-5649: Resource management error vulnerability in TCP/IP function included in the firmware of GT14 Model of
Resource management error vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE Core
nvd
CVE-2020-5645P3HIGHCVSS 7.5≤ 05.65.00.bd2020-11-06
CVE-2020-5645 [HIGH] CWE-384 CVE-2020-5645: Session fixation vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000
Session fixation vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreO
nvd
CVE-2020-5598P3HIGHCVSS 7.5≤ y2020-07-07
CVE-2020-5598 [HIGH] CVE-2020-5598: TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains an improper access control vulnerability, which may which may allow a remote attacker tobypass access restriction and stop the network functions of the products or execute a malicious pro
nvd
CVE-2020-5596P3HIGHCVSS 7.5≤ y2020-07-07
CVE-2020-5596 [HIGH] CWE-384 CVE-2020-5596: TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) does not properly manage sessions, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.
nvd
CVE-2020-5597P3HIGHCVSS 7.5≤ y2020-07-07
CVE-2020-5597 [HIGH] CWE-476 CVE-2020-5597: TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains a null pointer dereference vulnerability, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted pa
nvd
CVE-2020-5600P3HIGHCVSS 7.5≤ y2020-07-07
CVE-2020-5600 [HIGH] CVE-2020-5600: TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version
TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains a resource management error vulnerability, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.
nvd