First published: Fri Nov 06 2020(Updated: )
Resource management error vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted packet.
Credit: vultures@jpcert.or.jp
Affected Software | Affected Version | How to fix |
---|---|---|
Mitsubishielectric Coreos | <=05.65.00.bd | |
Mitsubishielectric Gt1450-qlbde | ||
Mitsubishielectric Gt1450-qmbde | ||
Mitsubishielectric Gt1450hs-qmbde | ||
Mitsubishielectric Gt1455-qtbde | ||
Mitsubishielectric Gt1455hs-qtbde |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-5649 is a resource management error vulnerability in the TCP/IP function included in the firmware of GT14 Model of GOT 1000 series.
The severity of CVE-2020-5649 is high, with a severity value of 7.5.
The affected software versions are GT1455-QTBDE CoreOS version '05.65.00.BD' and earlier, GT1450-QMBDE CoreOS version '05.65.00.BD' and earlier, GT1450-QLBDE CoreOS version '05.65.00.BD' and earlier, GT1455HS-QTBDE CoreOS version '05.65.00.BD' and earlier.
To fix CVE-2020-5649, it is recommended to update the firmware of the GT14 Model of GOT 1000 series to a version that is later than '05.65.00.BD'.