Vulnerabilities > GE > Multilin M60 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-03-23 CVE-2021-27428 Unrestricted Upload of File with Dangerous Type vulnerability in GE products
GE UR IED firmware versions prior to version 8.1x supports upgrading firmware using UR Setup configuration tool – Enervista UR Setup.
network
low complexity
ge CWE-434
critical
9.8
2022-03-23 CVE-2021-27426 Unspecified vulnerability in GE products
GE UR IED firmware versions prior to version 8.1x with “Basic” security variant does not allow the disabling of the “Factory Mode,” which is used for servicing the IED by a “Factory” user.
network
low complexity
ge
critical
9.8