Mitsubishielectric Iu1-1M20-D Firmware vulnerabilities
6 known vulnerabilities affecting mitsubishielectric/iu1-1m20-d_firmware.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH1
Vulnerabilities
Page 1 of 1
CVE-2020-5545P2CRITICALCVSS 9.8≤ 1.0.72020-03-16
CVE-2020-5545 [CRITICAL] CVE-2020-5545: TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware v
TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to bypass access restriction and to stop the network functions or execute malware via a specially crafted packet.
nvd
CVE-2020-5542P3CRITICALCVSS 9.8≤ 1.0.72020-03-16
CVE-2020-5542 [CRITICAL] CWE-119 CVE-2020-5542: Buffer error vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU
Buffer error vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
nvd
CVE-2020-5547P3CRITICALCVSS 9.8≤ 1.0.72020-03-16
CVE-2020-5547 [CRITICAL] CVE-2020-5547: Resource Management Errors vulnerability in TCP function included in the firmware of Mitsubishi Elec
Resource Management Errors vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
nvd
CVE-2020-5543P3CRITICALCVSS 9.8≤ 1.0.72020-03-16
CVE-2020-5543 [CRITICAL] CWE-384 CVE-2020-5543: TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware v
TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier does not properly manage sessions, which allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
nvd
CVE-2020-5544P3CRITICALCVSS 9.8≤ 1.0.72020-03-16
CVE-2020-5544 [CRITICAL] CWE-476 CVE-2020-5544: Null Pointer Dereference vulnerability in TCP function included in the firmware of Mitsubishi Electr
Null Pointer Dereference vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
nvd
CVE-2020-5546P3HIGHCVSS 8.8≤ 1.0.72020-03-16
CVE-2020-5546 [HIGH] CWE-88 CVE-2020-5546: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in
Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows an attacker on the same network segment to stop the network functions or execute malware via a specially crafted packet.
nvd