Lucene search

K
cvelistIcscertCVELIST:CVE-2019-10966
HistoryJul 10, 2019 - 5:52 p.m.

CVE-2019-10966

2019-07-1017:52:23
CWE-287
icscert
www.cve.org
2

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

31.6%

In GE Aestiva and Aespire versions 7100 and 7900, a vulnerability exists where serial devices are connected via an added unsecured terminal server to a TCP/IP network configuration, which could allow an attacker to remotely modify device configuration and silence alarms.

CNA Affected

[
  {
    "product": "Aestiva and Aespire",
    "vendor": "GE",
    "versions": [
      {
        "status": "affected",
        "version": "versions 7100"
      },
      {
        "status": "affected",
        "version": "versions 7900"
      }
    ]
  }
]

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

31.6%

Related for CVELIST:CVE-2019-10966