Shodan
Vulnerabilities
Vulnerable Software
Mitsubishielectric:  >> Iu1-1m20-D Firmware  Security Vulnerabilities
CVE-2020-16226
Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands.
CVSS Score
9.8
EPSS Score
0.002
Published
2020-10-05
CVE-2020-5545
TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to bypass access restriction and to stop the network functions or execute malware via a specially crafted packet.
CVSS Score
9.8
EPSS Score
0.004
Published
2020-03-16
CVE-2020-5546
Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows an attacker on the same network segment to stop the network functions or execute malware via a specially crafted packet.
CVSS Score
8.8
EPSS Score
0.004
Published
2020-03-16
CVE-2020-5547
Resource Management Errors vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
CVSS Score
9.8
EPSS Score
0.008
Published
2020-03-16
CVE-2020-5542
Buffer error vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
CVSS Score
9.8
EPSS Score
0.008
Published
2020-03-16
CVE-2020-5543
TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier does not properly manage sessions, which allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
CVSS Score
9.8
EPSS Score
0.008
Published
2020-03-16
CVE-2020-5544
Null Pointer Dereference vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows remote attackers to stop the network functions or execute malware via a specially crafted packet.
CVSS Score
9.8
EPSS Score
0.007
Published
2020-03-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved