CVE-2019-13524

Summary

GE PACSystems RX3i CPE100/115: All versions prior to R9.85,CPE302/305/310/330/400/410: All versions prior to R9.90,CRU/320 All versions(End of Life) may allow an attacker sending specially manipulated packets to cause the module state to change to halt-mode, resulting in a denial-of-service condition. An operator must reboot the CPU module after removing battery or energy pack to recover from halt-mode.

Affected Software

VendorProductVersion RangeStatus
n/aGE PACSystems RX3iCPE100/115: All versions prior to R9.85,CPE302/305/310/330/400/410: All versions prior to R9.90,CRU320 All versions(End of Life)affected

Weaknesses

  • CWE-20: IMPROPER INPUT VALIDATION CWE-20

ADP Enrichment

CVE Program Container

Additional References

References