CVE-2020-5543

Summary

TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier does not properly manage sessions, which allows remote attackers to stop the network functions or execute malware via a specially crafted packet.

Affected Software

VendorProductVersion RangeStatus
Mitsubishi Electric CorporationMitsubishi Electric MELQIC IU1 seriesIU1-1M20-D firmware version 1.0.7 and earlieraffected

Weaknesses

  • Fails to manage sessions

ADP Enrichment

CVE Program Container

Additional References

References