GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise prior to 3.1.5 have hardcoded credentials for a support account, which allows remote malicious users to obtain administrative access, and consequently execute arbitrary code, by leveraging knowledge of the password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ge mds pulsenet |