CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
62.3%
An issue was discovered on GE Grid Solutions MS3000 devices before 3.7.6.25p0_3.2.2.17p0_4.7p0. The debug port accessible via TCP (a qconn service) lacks access control.
Vendor | Product | Version | CPE |
---|---|---|---|
ge | ms_3000_firmware | * | cpe:2.3:o:ge:ms_3000_firmware:*:*:*:*:*:*:*:* |
ge | ms_3000 | - | cpe:2.3:h:ge:ms_3000:-:*:*:*:*:*:*:* |