PT-2022-3899 · General Electric · Inet Ii+1

Reid Wightman

Published

2022-03-31

Updated

2025-04-12

CVE-2022-24116

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions General Electric Renewable Energy iNET and iNET II versions prior to 8.3.0

Description The issue is related to inadequate encryption strength in the software of General Electric Renewable Energy's iNET and iNET II products. This could allow an attacker to compromise the target system.

Recommendations For versions prior to 8.3.0, update to version 8.3.0 or later to resolve the issue.

Fix

Inadequate Encryption Strength

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-325CWE-326

Related Identifiers

BDU:2022-04710

CVE-2022-24116

Affected Products

Inet

Inet Ii

PT-2022-3899 · General Electric · Inet Ii+1

CVE-2022-24116

Weakness Enumeration

Related Identifiers

Affected Products

References · 7