CVE-2026-8806
Denial-of-service (DoS) vulnerability in MELSEC iQ-F Series FX5-ENET/IP Ethernet module
Description
Expected Behavior Violation vulnerability in Mitsubishi Electric MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP all versions allows a remote attacker to cause a denial-of-service (DoS) condition in the affected product by continuously sending a large number of communication packets to the Ethernet port of the product in a short period of time, increasing the processing load of the product, preventing the internal anomaly-detection processing from being performed, and causing the communication function to stop.
INFO
Published Date :
June 19, 2026, 2:31 a.m.
Last Modified :
June 19, 2026, 2:31 a.m.
Remotely Exploit :
Yes !
Source :
Mitsubishi
Affected Products
The following products are affected by CVE-2026-8806
vulnerability.
Even if cvefeed.io is aware of the exact versions of the
products
that
are
affected, the information is not represented in the table below.
No affected product recoded yet
CVSS Scores
| Score | Version | Severity | Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|---|
| CVSS 4.0 | HIGH | e0f77b61-78fd-4786-b3fb-1ee347a748ad |
Solution
- Limit the rate of communication packets sent.
- Apply vendor-supplied firmware updates.
- Monitor network traffic for anomalies.
- Restrict network access to the device.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2026-8806 vulnerability anywhere in the article.