Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:53 a.m.5 views

CVE-2021-27428

GE UR IED firmware versions prior to version 8.1x supports upgrading firmware using UR Setup configuration tool – Enervista UR Setup. This UR Setup tool validates the authenticity and integrity of firmware file before uploading the UR IED. An illegitimate user could upgrade firmware without...

9.8CVSS6.9AI score0.01163EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/29 12:0 a.m.3 views

GE UR family Unrestricted Upload of File with Dangerous Type (CVE-2021-27428)

GE UR IED firmware versions prior to version 8.1x supports upgrading firmware using UR Setup configuration tool Enervista UR Setup. This UR Setup tool validates the authenticity and integrity of firmware file before uploading the UR IED. An illegitimate user could upgrade firmware without...

9.8CVSS7.3AI score0.01163EPSS
Exploits0References3
Circl
Circl
added 2024/11/14 6:8 a.m.10 views

CVE-2021-27428

creationtimestamp| type| source ---|---|--- 2024-11-14 06:08:46+00:00| seen| MISP/0bc4d5a3-292c-48e2-bb80-52c59bddfb26...

9.8CVSS7AI score0.01163EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2022/03/23 7:46 p.m.5 views

CVE-2021-27428 GE UR family Unrestricted Upload of File with Dangerous Type

GE UR IED firmware versions prior to version 8.1x supports upgrading firmware using UR Setup configuration tool – Enervista UR Setup. This UR Setup tool validates the authenticity and integrity of firmware file before uploading the UR IED. An illegitimate user could upgrade firmware without...

9.8CVSS9.4AI score0.01163EPSS
Exploits0References2
CVE
CVE
added 2022/03/23 7:46 p.m.99 views

CVE-2021-27428

CVE-2021-27428 affects GE UR family UR IED firmware prior to 8.1x, where the UR Setup (Enervista UR Setup) firmware upgrade flow does not enforce appropriate privileges, allowing an illegitimate user to upgrade firmware. The weakness centers on Unrestricted Upload of a Dangerous Type; the vulnera...

9.8CVSS9.5AI score0.01163EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/03/23 7:46 p.m.31 views

CVE-2021-27428 GE UR family Unrestricted Upload of File with Dangerous Type

GE UR IED firmware versions prior to version 8.1x supports upgrading firmware using UR Setup configuration tool – Enervista UR Setup. This UR Setup tool validates the authenticity and integrity of firmware file before uploading the UR IED. An illegitimate user could upgrade firmware without...

9.8CVSS9.6AI score0.01163EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2021/03/22 8:39 p.m.61 views

CISA Warns of Security Flaws in GE Power Management Devices

The U.S. Cybersecurity & Infrastructure Security Agency CISA is warning of critical-severity security flaws in GE’s Universal Relay UR family of power management devices. GE’s UR devices are the “basis of simplified power management for the protection of critical assets,” according to the company...

0.8AI score0.01163EPSS
Exploits0References14
Rows per page
Query Builder