CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2020-5649
https://notcve.org/view.php?id=CVE-2020-5649
06 Nov 2020 — Resource management error vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted ... • https://jvn.jp/vu/JVNVU99562395/index.html •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2020-5648
https://notcve.org/view.php?id=CVE-2020-5648
06 Nov 2020 — Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows unauthenticated attackers on adjacent network t... • https://jvn.jp/vu/JVNVU99562395/index.html • CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2020-5647
https://notcve.org/view.php?id=CVE-2020-5647
06 Nov 2020 — Improper access control vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QMBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QLBDE CoreOS version ’05.65.00.BD’ and earlier, GT1455HS-QTBDE CoreOS version ’05.65.00.BD’ and earlier, and GT1450HS-QMBDE CoreOS version ’05.65.00.BD’ and earlier) allows a remote unauthenticated attacker to stop the network functions of the products or execute a malicious pro... • https://jvn.jp/vu/JVNVU99562395/index.html •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2020-5646
https://notcve.org/view.php?id=CVE-2020-5646
06 Nov 2020 — NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted ... • https://jvn.jp/vu/JVNVU99562395/index.html • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2020-5645
https://notcve.org/view.php?id=CVE-2020-5645
06 Nov 2020 — Session fixation vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products via a specially crafted packet. V... • https://jvn.jp/vu/JVNVU99562395/index.html • CWE-384: Session Fixation •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2020-5644
https://notcve.org/view.php?id=CVE-2020-5644
06 Nov 2020 — Buffer overflow vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows a remote unauthenticated attacker to stop the network functions of the products or execute a malicious program via... • https://jvn.jp/vu/JVNVU99562395/index.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2020-5600
https://notcve.org/view.php?id=CVE-2020-5600
07 Jul 2020 — TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains a resource management error vulnerability, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet. La función TCP/IP incluida en el firmware de la serie Mitsubishi Electric GOT2000 (CoreOS con versión -Y e instalada anteriormente en los modelos GT2... • https://jvn.jp/en/vu/JVNVU95413676/index.html •
CVSS: 10.0EPSS: 1%CPEs: 4EXPL: 0CVE-2020-5599
https://notcve.org/view.php?id=CVE-2020-5599
07 Jul 2020 — TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains an improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet. La función TCP/IP incluida en el firmware de la serie Mitsubishi Electric GOT2000 (CoreOS c... • https://jvn.jp/en/vu/JVNVU95413676/index.html • CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2020-5598
https://notcve.org/view.php?id=CVE-2020-5598
07 Jul 2020 — TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains an improper access control vulnerability, which may which may allow a remote attacker tobypass access restriction and stop the network functions of the products or execute a malicious program via a specially crafted packet. La función TCP/IP incluida en el firmware de la serie Mitsubishi Electric GOT2000 (CoreOS con versión -Y e inst... • https://jvn.jp/en/vu/JVNVU95413676/index.html •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2020-5595
https://notcve.org/view.php?id=CVE-2020-5595
07 Jul 2020 — TCP/IP function included in the firmware of Mitsubishi Electric GOT2000 series (CoreOS with version -Y and earlier installed in GT27 Model, GT25 Model, and GT23 Model) contains a buffer overflow vulnerability, which may allow a remote attacker to stop the network functions of the products or execute a malicious program via a specially crafted packet. La función TCP/IP incluida en el firmware de la serie Mitsubishi Electric GOT2000 (CoreOS con versión -Y e instalada anteriormente en los modelos GT27, GT25 y ... • https://jvn.jp/en/vu/JVNVU95413676/index.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •