HIGH🇵🇱 Wersja polska

CVE-2020-5645

CVSS 7.5v3.1pub. 2020-11-06upd. 2024-11-21

Session fixation vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted packet.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Mitsubishielectric Coreos

    OS
    Mitsubishielectric
    ≤ 05.65.00.bd
  • Mitsubishielectric Gt1450hs Qmbde

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Gt1450 Qlbde

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Gt1450 Qmbde

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Gt1455hs Qtbde

    HW
    Mitsubishielectric
    wszystkie wersje
  • Mitsubishielectric Gt1455 Qtbde

    HW
    Mitsubishielectric
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2020-5648CRITICAL9.8ten sam produkt

Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in TCP/IP fun...

CVE-2020-5647CRITICAL9.8ten sam produkt

Improper access control vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 se...

CVE-2020-5644CRITICAL9.8ten sam produkt

Buffer overflow vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT...

CVE-2020-5599CRITICAL9.8ten sam produkt

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and ear...

CVE-2020-5595CRITICAL9.8ten sam produkt

TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and ear...