Vulnerabilities > GE
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-04 | CVE-2018-10613 | XXE vulnerability in GE MDS Pulsenet Multiple variants of XML External Entity (XXE) attacks may be used to exfiltrate data from the host Windows platform in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior. | 7.5 |
| 2018-06-04 | CVE-2018-10611 | Improper Authentication vulnerability in GE MDS Pulsenet Java remote method invocation (RMI) input port in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior may be exploited to allow unauthenticated users to launch applications and support remote code execution through web services. | 9.8 |
| 2018-05-18 | CVE-2018-8867 | Improper Input Validation vulnerability in GE products In GE PACSystems RX3i CPE305/310 version 9.20 and prior, RX3i CPE330 version 9.21 and prior, RX3i CPE 400 version 9.30 and prior, PACSystems RSTi-EP CPE 100 all versions, and PACSystems CPU320/CRU320 RXi all versions, the device does not properly validate input, which could allow a remote attacker to send specially crafted packets causing the device to become unavailable. | 7.5 |
| 2018-03-20 | CVE-2017-14008 | Use of Hard-coded Credentials vulnerability in GE Centricity Pacs Ra1000 GE Centricity PACS RA1000, diagnostic image analysis, all current versions are affected these devices use default or hard-coded credentials. | 9.8 |
| 2018-03-20 | CVE-2017-14006 | Use of Hard-coded Credentials vulnerability in GE Xeleris GE Xeleris versions 1.0,1.1,2.1,3.0,3.1, medical imaging systems, all current versions are affected, these devices use default or hard-coded credentials. | 9.8 |
| 2018-03-20 | CVE-2017-14004 | Use of Hard-coded Credentials vulnerability in GE Gemnet License Server GE GEMNet License server (EchoServer) all current versions are affected these devices use default or hard-coded credentials. | 9.8 |
| 2018-03-20 | CVE-2017-14002 | Use of Hard-coded Credentials vulnerability in GE Infinia Hawkeye 4 Firmware GE Infinia/Infinia with Hawkeye 4 medical imaging systems all current versions are affected these devices use default or hard-coded credentials. | 9.8 |
| 2018-02-19 | CVE-2018-5475 | Out-of-bounds Write vulnerability in GE D60 Line Distance Relay Firmware 7.11 A Stack-based Buffer Overflow issue was discovered in GE D60 Line Distance Relay devices running firmware Version 7.11 and prior. | 9.8 |
| 2018-02-19 | CVE-2018-5473 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GE D60 Line Distance Relay Firmware 7.11 An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in GE D60 Line Distance Relay devices running firmware Version 7.11 and prior. | 9.8 |
| 2017-10-05 | CVE-2017-12732 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GE Intelligent Platforms Proficy Hmi/Scada Cimplicity A Stack-based Buffer Overflow issue was discovered in GE CIMPLICITY Versions 9.0 and prior. | 6.8 |