High severity8.8NVD Advisory· Published Feb 5, 2016· Updated May 6, 2026

CVE-2016-0861

Description

General Electric (GE) Industrial Solutions UPS SNMP/Web Adapter devices with firmware before 4.8 allow remote authenticated users to execute arbitrary commands via unspecified vectors.

Affected products

Ge/Ups SNMP Web Adapter Firmware
cpe:2.3:a:ge:ups_snmp_web_adapter_firmware:*:*:*:*:*:*:*:*
Range: <=4.7

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

apps.geindustrial.com/publibrary/checkout/Application%20and%20Technical%7CGEIS_SNMP%7CPDF&filename=GEIS_SNMP.pdfnvdVendor Advisory
ics-cert.us-cert.gov/advisories/ICSA-16-033-02nvdThird Party AdvisoryUS Government Resource
packetstormsecurity.com/files/135586/GE-Industrial-Solutions-UPS-SNMP-Adapter-Command-Injection.htmlnvd
seclists.org/fulldisclosure/2016/Feb/21nvd
www.exploit-db.com/exploits/39408/nvd

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.008
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000