Vulnerabilities > GE > Mu320E Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2021-03-25 CVE-2021-27452 Use of Hard-coded Credentials vulnerability in GE Mu320E Firmware
The software contains a hard-coded password that could allow an attacker to take control of the merging unit using these hard-coded credentials on the MU320E (all firmware versions prior to v04A00.1).
local
low complexity
ge CWE-798
7.8
2021-03-25 CVE-2021-27450 Unspecified vulnerability in GE Mu320E Firmware
SSH server configuration file does not implement some best practices.
local
low complexity
ge
7.8
2021-03-25 CVE-2021-27448 Improper Privilege Management vulnerability in GE Mu320E Firmware
A miscommunication in the file system allows adversaries with access to the MU320E to escalate privileges on the MU320E (all firmware versions prior to v04A00.1).
local
low complexity
ge CWE-269
7.8