In GE Aestiva and Aespire versions 7100 and 7900, a vulnerability exists where serial devices are connected via an added unsecured terminal server to a TCP/IP network configuration, which could allow an attacker to remotely modify device configuration and silence alarms.
[
{
"product": "Aestiva and Aespire",
"vendor": "GE",
"versions": [
{
"status": "affected",
"version": "versions 7100"
},
{
"status": "affected",
"version": "versions 7900"
}
]
}
]