5 matches found
GE UR family Exposure of Sensitive Information to an Unauthorized Actor (CVE-2021-27424)
GE UR firmware versions prior to version 8.1x shares MODBUS memory map as part of the communications guide. GE was made aware a Last-key pressed MODBUS register can be used to gain unauthorized information. This plugin only works with Tenable.ot. Please visit...
GE UR family Insecure Default Variable Initialization (CVE-2021-27426)
GE UR IED firmware versions prior to version 8.1x with Basic security variant does not allow the disabling of the Factory Mode, which is used for servicing the IED by a Factory user. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...
GE Multilin UR Family Inadequate Encryption Strength (CVE-2016-2183)
Prior to UR firmware Version 8.1x, UR supported various encryption and MAC algorithms for SSH communication, some of which are weak. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
GE UR family Unrestricted Upload of File with Dangerous Type (CVE-2021-27428)
GE UR IED firmware versions prior to version 8.1x supports upgrading firmware using UR Setup configuration tool Enervista UR Setup. This UR Setup tool validates the authenticity and integrity of firmware file before uploading the UR IED. An illegitimate user could upgrade firmware without...
GE UR family Improper Input Validation (CVE-2021-27418)
GE UR firmware versions prior to version 8.1x supports web interface with read-only access. The device fails to properly validate user input, making it possible to perform cross-site scripting attacks, which may be used to send a malicious script. Also, UR Firmware web server does not perform HTM...