CVE-2019-10966
N/A
N/A
Summary
In GE Aestiva and Aespire versions 7100 and 7900, a vulnerability exists where serial devices are connected via an added unsecured terminal server to a TCP/IP network configuration, which could allow an attacker to remotely modify device configuration and silence alarms.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| GE | Aestiva and Aespire | versions 7100 | affected |
| GE | Aestiva and Aespire | versions 7900 | affected |
Weaknesses
- CWE-287: IMPROPER AUTHENTICATION CWE-287
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.