11 matches found
Mitsubishi IU1 Argument Injection (CVE-2020-5546)
Improper Neutralization of Argument Delimiters in a Command 'Argument Injection' vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows an attacker on the same network segment to stop the network functio...
CVE-2020-5545
TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to bypass access restriction and to stop the network functions or execute malware via a specially crafted packet...
CVE-2020-5542
Buffer error vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet...
CVE-2020-5542
Buffer error vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet...
Information disclosure
Resource Management Errors vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet...
Code injection
TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier does not properly manage sessions, which allows remote attackers to stop the network functions or execute malware via a specially crafted packet...
Authentication flaw
TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to bypass access restriction and to stop the network functions or execute malware via a specially crafted packet...
CVE-2020-5545
CVE-2020-5545 affects Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware (version 1.0.7 and earlier). The root cause is a TCP function access control error that allows remote attackers to bypass access restrictions and either stop network functions or execute malware via a specially crafte...
CVE-2020-5546
The CVE-2020-5546 entry affects Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier, where the TCP function is vulnerable to an argument-delimiter injection. The root cause is improper neutralization of input parameters, enabling a same-network attacker to stop net...
CVE-2020-5544
Null Pointer Dereference vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet...
CVE-2020-5542
CVE-2020-5542 affects Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware up to version 1.0.7. A buffer error in the TCP function can allow remote attackers to stop network functions or run malware via a crafted packet. Affected component: TCP handling in the firmware; root cause: unclear i...