Vulnerabilities > GE > Multilin T35 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-23 | CVE-2021-27422 | Cleartext Transmission of Sensitive Information vulnerability in GE products GE UR firmware versions prior to version 8.1x web server interface is supported on UR over HTTP protocol. | 7.5 |
| 2022-03-23 | CVE-2021-27426 | Unspecified vulnerability in GE products GE UR IED firmware versions prior to version 8.1x with “Basic” security variant does not allow the disabling of the “Factory Mode,” which is used for servicing the IED by a “Factory” user. | 7.5 |
| 2022-03-23 | CVE-2021-27428 | Unrestricted Upload of File with Dangerous Type vulnerability in GE products GE UR IED firmware versions prior to version 8.1x supports upgrading firmware using UR Setup configuration tool – Enervista UR Setup. | 7.5 |