259 matches found
CVE-2020-5654
Session fixation vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before, RD81DL96...
Buffer overflow
Buffer overflow vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before, RD81DL96 Hi...
Session fixation
Session fixation vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before, RD81DL96...
Null pointer dereference
NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...
Design/Logic Flaw
Resource Management Errors vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...
Race condition
Uncontrolled resource consumption vulnerability in Ethernet Port on MELSEC iQ-R, Q and L series CPU modules R 00/01/02 CPU firmware versions '20' and earlier, R 04/08/16/32/120 EN CPU firmware versions '52' and earlier, R 08/16/32/120 SFCPU firmware versions '22' and earlier, R 08/16/32/120 PCPU...
Improper access control
Improper access control vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...
Design/Logic Flaw
Improper neutralization of argument delimiters in a command 'Argument Injection' vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Modul...
CVE-2020-5658
The CVE-2020-5658 entry concerns a Resource Management Errors vulnerability in the TCP/IP functionality of MELSEC iQ-R series firmware. Affected modules and serial-number guards: EtherNet/IP Network Interface Module RJ71EIP91 (first two digits of serial ≤ 02), PROFINET IO Controller RJ71PN92 (≤ 0...
CVE-2020-5657
The CVE-2020-5657 issue affects MELSEC iQ-R firmware and is caused by improper neutralization of argument delimiters in a TCP/IP function. A crafted packet from an adjacent network could cause a denial-of-service condition or stop network functions on affected modules: RJ71EIP91 (EtherNet/IP), RJ...
CVE-2020-5658
Resource Management Errors vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...
CVE-2020-5657
Improper neutralization of argument delimiters in a command 'Argument Injection' vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Modul...
CVE-2020-5656
CVE-2020-5656 affects Mitsubishi Electric MELSEC iQ-R Series firmware: EtherNet/IP/PROFINET interface modules RJ71EIP91, RJ71PN92, and data/OPC modules RD81DL96, RD81MES96N, RD81OPC96. Root cause: improper access control in the TCP/IP function, enabling a remote unauthenticated attacker to stop n...
CVE-2020-5655
CVE-2020-5655 is a NULL pointer dereference vulnerability in the TCP/IP code of MELSEC iQ‑R firmware. A remote, unauthenticated attacker can stop network functions by sending a specially crafted packet. Affected modules and serial-number constraints from connected sources: EtherNet/IP Network Int...
CVE-2020-5655
NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...
CVE-2020-5656
Improper access control vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...
CVE-2020-5653
CVE-2020-5653 is a buffer overflow in the MELSEC iQ-R firmware TCP/IP stack (affecting EtherNet/IP RJ71EIP91, PROFINET RJ71PN92, RD81DL96, RD81MES96N, RD81OPC96). Root cause: improper restriction within the bounds of a memory buffer. Impact per sources: remote attacker can stop network functions ...
CVE-2020-5654
CVE-2020-5654 is a session-fixation vulnerability in the TCP/IP function of MELSEC iQ-R series firmware. A remote, unauthenticated attacker can stop the network functions of affected modules by sending a specially crafted packet. Affected MELSEC iQ-R components include EtherNet/IP Network Interfa...
CVE-2020-5654
Session fixation vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before, RD81DL96...
CVE-2020-5652
The CVE-2020-5652 vulnerability affects Mitsubishi Electric MELSEC iQ-R, Q, and L Series CPU modules. A specially crafted Ethernet packet can cause uncontrolled resource consumption, stopping Ethernet communications and leading to a DoS. Affected products include iQ-R CPUs (R00, R01, R02, R04 EN,...