CVE-2020-5545
First published: Mon Mar 16 2020(Updated: )
TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to bypass access restriction and to stop the network functions or execute malware via a specially crafted packet.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mitsubishielectric Iu1-1m20-d Firmware | <=1.0.7 | |
| Mitsubishielectric Iu1-1m20-d |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2020-5545.
What is the severity of CVE-2020-5545?
CVE-2020-5545 has a severity score of 9.8, which is considered critical.
What is the affected software for CVE-2020-5545?
The affected software for CVE-2020-5545 is Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier.
How can remote attackers exploit CVE-2020-5545?
Remote attackers can exploit CVE-2020-5545 by bypassing access restriction and stopping network functions or executing malware via a specially crafted packet.
Is there a fix available for CVE-2020-5545?
It is recommended to update to a patched version of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware to fix CVE-2020-5545.
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/mitsubishielectric
- canonical/mitsubishielectric iu1-1m20-d firmware
- version/mitsubishielectric iu1-1m20-d firmware/1.0.7
- canonical/mitsubishielectric iu1-1m20-d