Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
πŸ”₯ Daily Hot!
πŸ’ͺ🏽 CPE Enhanced Advisories
πŸ•Ά Shadow Exploits
πŸ•΅πŸΌ Vulners CPE
πŸ” Security news
πŸ’» Exploit updates
πŸ“‘ Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
πŸ€– AI High Score
πŸ“° CVE Feed
show all

9 matches found

Prion
Prionβ€’added 2018/05/09 9:29 p.m.β€’18 views

Authentication flaw

In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...

6.4CVSS6.7AI score0.00249EPSS
Exploits0References1Affected Software3
Prion
Prionβ€’added 2018/05/09 9:29 p.m.β€’14 views

Remote code execution

Silex SD-320AN version 2.01 and prior and GE MobileLinkGEH-SD-320AN version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution...

6.5CVSS7.8AI score0.00554EPSS
Exploits0References1Affected Software2
NVD
NVDβ€’added 2018/05/09 9:29 p.m.β€’11 views

CVE-2018-6020

In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...

6.5CVSS6.8AI score0.00249EPSS
Exploits0References1
NVD
NVDβ€’added 2018/05/09 9:29 p.m.β€’11 views

CVE-2018-6021

Silex SD-320AN version 2.01 and prior and GE MobileLinkGEH-SD-320AN version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution...

7.4CVSS7.8AI score0.00554EPSS
Exploits0References1
OSV
OSVβ€’added 2018/05/09 9:29 p.m.β€’2 views

CVE-2018-6021

Silex SD-320AN version 2.01 and prior and GE MobileLinkGEH-SD-320AN version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution...

7.4CVSS6AI score0.00554EPSS
Exploits0References1
Cvelist
Cvelistβ€’added 2018/05/09 9:0 p.m.β€’9 views

CVE-2018-6020

In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...

6.6AI score0.00249EPSS
Exploits0References1
Cvelist
Cvelistβ€’added 2018/05/09 9:0 p.m.β€’12 views

CVE-2018-6021

Silex SD-320AN version 2.01 and prior and GE MobileLinkGEH-SD-320AN version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution...

7.8AI score0.00554EPSS
Exploits0References1
CVE
CVEβ€’added 2018/05/09 9:0 p.m.β€’42 views

CVE-2018-6020

CVE-2018-6020 affects Silex SX-500 series and GE MobileLink (GEH-500) devices (version 1.54 and earlier). The vulnerability is an improper authentication on certain POST requests, allowing an attacker to modify system settings. Public documentation from ICS-CERT/ENISA details that these products ...

6.5CVSS6.5AI score0.00249EPSS
Exploits0References1Affected Software1
CVE
CVEβ€’added 2018/05/09 9:0 p.m.β€’43 views

CVE-2018-6021

CVE-2018-6021 affects Silex SD-320AN (2.01 and earlier) and GE MobileLink GEH-SD-320AN (GEH-1.1 and earlier). Root cause: system call parameters not properly sanitized, enabling OS command injection and remote code execution. Publicly documented in ICSMA-18-128-01; CVSSv3 base score 7.4. Impact: ...

7.4CVSS7.8AI score0.00554EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder