Latest Vulnerabilities Affecting GE products

Date CVE Title CVSS
2018-12-14 CVE-2018-19003 Path Traversal vulnerability in GE and products Medium
2018-12-07 CVE-2018-15362 Improper Restriction of XML External Entity Reference ('XXE') vulnerability in GE Cimplicity 10.0/9.0r2/9.5 Medium
2018-10-10 CVE-2018-17925 Security Features vulnerability in GE Ifix 2.0 Medium
2018-10-02 CVE-2017-7908 Buffer Errors vulnerability in GE and Gigasoft products Medium
2018-06-04 CVE-2018-10613 Improper Restriction of XML External Entity Reference ('XXE') vulnerability in GE MDS Pulsenet 3.2.1 Medium
2018-06-04 CVE-2018-10611 Authentication Issues vulnerability in GE MDS Pulsenet 3.2.1 High
2018-06-04 CVE-2018-10615 Path Traversal vulnerability in GE MDS Pulsenet 3.2.1 Medium
2018-05-18 CVE-2018-8867 Input Validation vulnerability in GE and products High
2018-03-20 CVE-2017-14002 Use of Hard-coded Credentials vulnerability in GE Infinia Hawkeye 4 Firmware High
2018-03-20 CVE-2017-14006 Use of Hard-coded Credentials vulnerability in GE Xeleris High
2018-03-20 CVE-2017-14004 Use of Hard-coded Credentials vulnerability in GE Gemnet License Server High
2018-03-20 CVE-2017-14008 Use of Hard-coded Credentials vulnerability in GE Centricity Pacs Ra1000 High
2018-02-19 CVE-2018-5475 Buffer Errors vulnerability in GE D60 Line Distance Relay Firmware 7.11 High
2017-10-05 CVE-2017-12732 Buffer Errors vulnerability in GE Intelligent Platforms Proficy Hmi/Scada Cimplicity 9.0 Medium
2017-08-28 CVE-2015-3976 Cross-Site Scripting (XSS) vulnerability in GE and products Low