CVE-2020-5648

Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series (GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS version "05.65.00.BD" and earlier, and GT1450HS-QMBDE CoreOS version "05.65.00.BD" and earlier) allows unauthenticated attackers on adjacent network to stop the network functions of the products via a specially crafted packet.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:mitsubishielectric:coreos:*:*:*:*:*:*:*:*
OR cpe:2.3:h:mitsubishielectric:gt1450-qlbde:-:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:gt1450-qmbde:-:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:gt1450hs-qmbde:-:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:gt1455-qtbde:-:*:*:*:*:*:*:*
cpe:2.3:h:mitsubishielectric:gt1455hs-qtbde:-:*:*:*:*:*:*:*

Information

Published : 2020-11-05 19:15

Updated : 2020-11-20 09:15


NVD link : CVE-2020-5648

Mitre link : CVE-2020-5648


JSON object : View

CWE
CWE-88

Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

Advertisement

dedicated server usa

Products Affected

mitsubishielectric

  • gt1455-qtbde
  • coreos
  • gt1450-qlbde
  • gt1450hs-qmbde
  • gt1450-qmbde
  • gt1455hs-qtbde