CVE-2026-8805— Denial-of-service (DoS) vulnerability in MELSEC iQ-F Series EtherNet/IP module
Possible ATT&CK Techniques 1AI
T1499.002 · Service Exhaustion FloodAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Mitsubishi Electric Corporation | Mitsubishi Electric MELSEC iQ-F Series FX5-EIP EtherNet/IP Module FX5-EIP | versions 1.000 and prior | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-8805
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Denial-of-service (DoS) vulnerability in MELSEC iQ-F Series EtherNet/IP module
Source: NVD (National Vulnerability Database)
Vulnerability Description
Integer Overflow or Wraparound vulnerability in the EtherNet/IP function of Mitsubishi Electric MELSEC iQ-F Series FX5-EIP EtherNet/IP module FX5-EIP versions 1.000 and prior allows a remote attacker to cause a denial-of-service (DoS) condition in the affected product by rapidly establishing a large number of TCP connections to it, resulting in an inconsistency in the product's internal connection management process and triggering improper memory access.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
整数溢出或超界折返
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Mitsubishi Electric Corporation | Mitsubishi Electric MELSEC iQ-F Series FX5-EIP EtherNet/IP Module FX5-EIP | versions 1.000 and prior | - |
II. Public POCs for CVE-2026-8805
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-8805
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-8805 (3)
- 🔗 JVNVU#97140216: 三菱電機製MELSEC iQ-FシリーズのFX5-EIPおよびFX5-ENET/IPにおける脆弱性government-resource
IV. Related Vulnerabilities
Same vendor: Mitsubishi Electric Corporation
- CVE-2026-8806
Denial-of-service (DoS) vulnerability in MELSEC iQ-F Series - CVE-2026-5667
Information Disclosure, Information Tampering, or Denial-of- - CVE-2025-14816
Information Disclosure, Tampering, and Denial-of-Service Vul - CVE-2025-14815
Information Disclosure, Tampering, and Denial-of-Service Vul - CVE-2025-2399
Denial of Service (DoS) Vulnerability in Mitsubishi Electric
V. Comments for CVE-2026-8805
No comments yet