Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ge vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2019-6564
GE Communicator, all versions before 4.0.517, allows a non-administrative user to place malicious files within the installer file directory, which may allow an malicious user to gain administrative privileges on a system during installation or upgrade.
Ge Ge Communicator
7.8
CVSSv3
CVE-2019-6566
GE Communicator, all versions before 4.0.517, allows a non-administrative user to replace the uninstaller with a malicious version, which could allow an malicious user to gain administrator privileges to the system.
Ge Ge Communicator
5.4
CVSSv3
CVE-2019-18267
An issue was found in GE S2020/S2020G Fast Switch 61850, S2020/S2020G Fast Switch 61850 Versions 07A03 and prior. An attacker can inject arbitrary Javascript in a specially crafted HTTP request that may be reflected back in the HTTP response. The device is also vulnerable to a st...
Ge S2020 Firmware
Ge S2020g Firmware
6.1
CVSSv3
CVE-2020-16246
The affected Reason S20 Ethernet Switch is vulnerable to cross-site scripting (XSS), which may allow malicious users to trick users into following a link or navigating to a page that posts a malicious JavaScript statement to the vulnerable site, causing the malicious JavaScript t...
Ge S2020 Firmware
Ge S2024 Firmware
6.1
CVSSv3
CVE-2020-16242
The affected Reason S20 Ethernet Switch is vulnerable to cross-site scripting (XSS), which may allow an malicious user to trick application users into performing critical application actions that include, but are not limited to, adding and updating accounts.
Ge S2020 Firmware
Ge S2024 Firmware
7.5
CVSSv3
CVE-2012-6663
General Electric D20ME devices are not properly configured and reveal plaintext passwords.
Ge D20me Firmware -
Ge D200 Firmware -
NA
CVE-2012-0229
The Data Archiver service in GE Intelligent Platforms Proficy Historian 4.5 and previous versions allows remote malicious users to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted session on TCP port 14000 to (1) ihDataArchiver.exe or...
Ge Intelligent Platforms Proficy Historian 2.0
Ge Intelligent Platforms Proficy Historian 1.0
Ge Intelligent Platforms Proficy Historian 3.1
Ge Intelligent Platforms Proficy Historian 3.0
Ge Intelligent Platforms Proficy Historian
Ge Intelligent Platforms Proficy Historian 4.0
Ge Intelligent Platforms Proficy Historian 3.5
7.6
CVSSv3
CVE-2017-7908
A heap-based buffer overflow exists in the third-party product Gigasoft, v5 and prior, included in GE Communicator 3.15 and prior. A malicious HTML file that loads the ActiveX controls can trigger the vulnerability via unchecked function calls.
Gigasoft Proessentials
Ge Ge Communicator
6.3
CVSSv3
CVE-2016-5787
General Electric (GE) Digital Proficy HMI/SCADA - CIMPLICITY prior to 8.2 SIM 27 mishandles service DACLs, which allows local users to modify a service configuration via unspecified vectors.
Ge Cimplicity
Ge Cimplicity 8.2
NA
CVE-2012-4689
Integer overflow in CimWebServer.exe in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 up to and including 8.0, and Proficy Process Systems with CIMPLICITY, allows remote malicious users to cause a denial of service (daemon crash) via a malformed HTTP request.
Ge Intelligent Platforms Proficy Hmi\\/scada Cimplicity 4.01
Ge Intelligent Platforms Proficy Hmi\\/scada Cimplicity 8.0
Ge Intelligent Platforms Proficy Hmi\\/scada Cimplicity 7.5
Ge Intelligent Platforms Proficy Process Systems With Cimplicity -
Ge Intelligent Platforms Proficy Process Systems -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »