CRITICAL🇬🇧 English

CVE-2020-5644

CVSS 9.8v3.1pub. 2020-11-06upd. 2024-11-21

Buffer overflow vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Mitsubishielectric Coreos

    OS
    Mitsubishielectric
    ≤ 05.65.00.bd
  • Mitsubishielectric Gt1450hs Qmbde

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Gt1450 Qlbde

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Gt1450 Qmbde

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Gt1455hs Qtbde

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Gt1455 Qtbde

    HW
    Mitsubishielectric
    wszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Auth BypassMemory
CWE
Referencje

Powiązane podatności

CVE-2020-5647CRITICAL9.8ten sam produkt

Improper access control vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 se...

CVE-2020-5648CRITICAL9.8ten sam produkt

Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in TCP/IP fun...

CVE-2020-5595CRITICAL9.8ten sam produkt

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and ear...

CVE-2020-5599CRITICAL9.8ten sam produkt

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and ear...

CVE-2020-5646HIGH7.5ten sam produkt

NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 ...