cbcvebase.

Mitsubishielectric Iu1-1M20-D Firmware vulnerabilities

6 known vulnerabilities affecting mitsubishielectric/iu1-1m20-d_firmware.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH1

Vulnerabilities

Page 1 of 1
CVE-2020-5545P2CRITICALCVSS 9.8≤ 1.0.72020-03-16
CVE-2020-5545 [CRITICAL] CVE-2020-5545: TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware v TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to bypass access restriction and to stop the network functions or execute malware via a specially crafted packet.
nvd
CVE-2020-5542P3CRITICALCVSS 9.8≤ 1.0.72020-03-16
CVE-2020-5542 [CRITICAL] CWE-119 CVE-2020-5542: Buffer error vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU Buffer error vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
nvd
CVE-2020-5547P3CRITICALCVSS 9.8≤ 1.0.72020-03-16
CVE-2020-5547 [CRITICAL] CVE-2020-5547: Resource Management Errors vulnerability in TCP function included in the firmware of Mitsubishi Elec Resource Management Errors vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
nvd
CVE-2020-5543P3CRITICALCVSS 9.8≤ 1.0.72020-03-16
CVE-2020-5543 [CRITICAL] CWE-384 CVE-2020-5543: TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware v TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier does not properly manage sessions, which allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
nvd
CVE-2020-5544P3CRITICALCVSS 9.8≤ 1.0.72020-03-16
CVE-2020-5544 [CRITICAL] CWE-476 CVE-2020-5544: Null Pointer Dereference vulnerability in TCP function included in the firmware of Mitsubishi Electr Null Pointer Dereference vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
nvd
CVE-2020-5546P3HIGHCVSS 8.8≤ 1.0.72020-03-16
CVE-2020-5546 [HIGH] CWE-88 CVE-2020-5546: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows an attacker on the same network segment to stop the network functions or execute malware via a specially crafted packet.
nvd
Mitsubishielectric Iu1-1M20-D Firmware vulnerabilities | cvebase