PT-2018-14759 · Ge · Ge Mark Vie+3
Can Demirel
·
Publicado
2018-12-14
·
Atualizado
2019-10-09
·
CVE-2018-19003
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
GE Mark VIe versions 03.03.28C through 05.02.04C
EX2100e versions prior to 04.09.00C
EX2100e Reg versions prior to 04.09.00C
LS2100e versions prior to 04.09.00C
Description
The affected versions of the application have a path traversal issue that fails to restrict the ability of an attacker to gain access to restricted information.
Recommendations
For GE Mark VIe versions 03.03.28C through 05.02.04C, update to a version after 05.02.04C.
For EX2100e versions prior to 04.09.00C, update to version 04.09.00C or later.
For EX2100e Reg versions prior to 04.09.00C, update to version 04.09.00C or later.
For LS2100e versions prior to 04.09.00C, update to version 04.09.00C or later.
Correção
Path traversal
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ex2100
Ex2100E Reg
Ge Mark Vie
Ls2100E