Vulnerabilities > GE > GE Communicator

DATE CVE VULNERABILITY TITLE RISK
2019-05-09 CVE-2019-6566 Unspecified vulnerability in GE Communicator 3.15
GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to replace the uninstaller with a malicious version, which could allow an attacker to gain administrator privileges to the system.
local
low complexity
ge
7.8
2019-05-09 CVE-2019-6564 Uncontrolled Search Path Element vulnerability in GE Communicator 3.15
GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place malicious files within the installer file directory, which may allow an attacker to gain administrative privileges on a system during installation or upgrade.
local
low complexity
ge CWE-427
7.8
2019-05-09 CVE-2019-6548 Use of Hard-coded Credentials vulnerability in GE Communicator 3.15
GE Communicator, all versions prior to 4.0.517, contains two backdoor accounts with hardcoded credentials, which may allow control over the database.
network
low complexity
ge CWE-798
critical
9.8
2019-05-09 CVE-2019-6546 Uncontrolled Search Path Element vulnerability in GE Communicator 3.15
GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files within the working directory of the program, which may allow an attacker to manipulate widgets and UI elements.
local
low complexity
ge CWE-427
7.8
2019-05-09 CVE-2019-6544 Unspecified vulnerability in GE Communicator 3.15
GE Communicator, all versions prior to 4.0.517, has a service running with system privileges that may allow an unprivileged user to perform certain administrative actions, which may allow the execution of scheduled scripts with system administrator privileges.
network
high complexity
ge
5.6
2018-10-02 CVE-2017-7908 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
A heap-based buffer overflow exists in the third-party product Gigasoft, v5 and prior, included in GE Communicator 3.15 and prior.
network
low complexity
gigasoft ge CWE-119
7.6