PT-2018-14759 · Ge · Ge Mark Vie+3
Can Demirel
·
Published
2018-12-14
·
Updated
2019-10-09
·
CVE-2018-19003
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
GE Mark VIe versions 03.03.28C through 05.02.04C
EX2100e versions prior to 04.09.00C
EX2100e Reg versions prior to 04.09.00C
LS2100e versions prior to 04.09.00C
Description
The affected versions of the application have a path traversal issue that fails to restrict the ability of an attacker to gain access to restricted information.
Recommendations
For GE Mark VIe versions 03.03.28C through 05.02.04C, update to a version after 05.02.04C.
For EX2100e versions prior to 04.09.00C, update to version 04.09.00C or later.
For EX2100e Reg versions prior to 04.09.00C, update to version 04.09.00C or later.
For LS2100e versions prior to 04.09.00C, update to version 04.09.00C or later.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ex2100
Ex2100E Reg
Ge Mark Vie
Ls2100E