CVE-2018-8867

2018-05-1700:00:00

CWE-20

icscert

www.cve.org

0.001 Low

EPSS

Percentile

48.6%

JSON

In GE PACSystems RX3i CPE305/310 version 9.20 and prior, RX3i CPE330 version 9.21 and prior, RX3i CPE 400 version 9.30 and prior, PACSystems RSTi-EP CPE 100 all versions, and PACSystems CPU320/CRU320 RXi all versions, the device does not properly validate input, which could allow a remote attacker to send specially crafted packets causing the device to become unavailable.

CNA Affected

[
  {
    "product": "GE PACSystems RX3i CPE305/310 version 9.20 and prior RX3i CPE330 version 9.21 and prior RX3i CPE 400 version 9.30 and prior PACSystems RSTi-EP CPE 100 all versionsPACSystems CPU320/CRU320 RXi all versions",
    "vendor": "ICS-CERT",
    "versions": [
      {
        "status": "affected",
        "version": "GE PACSystems RX3i CPE305/310 version 9.20 and prior RX3i CPE330 version 9.21 and prior RX3i CPE 400 version 9.30 and prior PACSystems RSTi-EP CPE 100 all versionsPACSystems CPU320/CRU320 RXi all versions"
      }
    ]
  }
]

References

www.securityfocus.com/bid/104241

ics-cert.us-cert.gov/advisories/ICSA-18-137-01

0.001 Low

EPSS

Percentile

48.6%

JSON

Related for CVELIST:CVE-2018-8867