VYPR
Vendor

GE Grid Solutions

Products
6
CVEs
4
Across products
7
Status
Private

Products

6

Recent CVEs

4
  • CVE-2022-43977CriJan 17, 2023
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on GE Grid Solutions MS3000 devices before 3.7.6.25p0_3.2.2.17p0_4.7p0. The debug port accessible via TCP (a qconn service) lacks access control.

  • CVE-2022-43976CriJan 17, 2023
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in FC46-WebBridge on GE Grid Solutions MS3000 devices before 3.7.6.25p0_3.2.2.17p0_4.7p0. Direct access to the API is possible on TCP port 8888 via programs located in the cgi-bin folder without any authentication.

  • CVE-2020-12017CriJun 2, 2020
    risk 0.64cvss 9.8epss 0.02

    GE Grid Solutions Reason RT Clocks, RT430, RT431, and RT434, all firmware versions prior to 08A05. The device’s vulnerability in the web application could allow multiple unauthenticated attacks that could cause serious impact. The vulnerability may allow an unauthenticated…

  • CVE-2022-43975HigJan 17, 2023
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in FC46-WebBridge on GE Grid Solutions MS3000 devices before 3.7.6.25p0_3.2.2.17p0_4.7p0. A vulnerability in the web server allows arbitrary files and configurations to be read via directory traversal over TCP port 8888.