25 matches found
CVE-2021-27438
The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 all firmware versions prior to 02A04.1...
CVE-2021-27454
The software performs an operation at a privilege level higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses on the Reason DR60 all firmware versions prior to 02A04.1...
CVE-2021-27440
The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 all firmware versions prior to 02A04.1...
EUVD-2021-14208
Malware in sbrugna...
EUVD-2021-14192
Malware in sbrugna...
EUVD-2021-14194
Malware in sbrugna...
CVE-2021-27454
The software performs an operation at a privilege level higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses on the Reason DR60 all firmware versions prior to 02A04.1...
CVE-2021-27454
The software performs an operation at a privilege level higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses on the Reason DR60 all firmware versions prior to 02A04.1...
CVE-2021-27438
The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 all firmware versions prior to 02A04.1...
CVE-2021-27440
The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 all firmware versions prior to 02A04.1...
CVE-2021-27438
The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 all firmware versions prior to 02A04.1...
Hardcoded credentials
The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 all firmware versions prior to 02A04.1...
Hardcoded credentials
The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 all firmware versions prior to 02A04.1...
CVE-2021-27454
CVE-2021-27454 affects GE Reason DR60 firmware prior to 02A04.1, where the software performs an operation at a privilege level higher than required, enabling execution with unnecessary privileges. This is documented across multiple sources (NVD, Red Hat, CNVD, CVE listings, and CISA ICS advisory)...
CVE-2021-27440
The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 all firmware versions prior to 02A04.1...
CVE-2021-27440
Summary: CVE-2021-27440 concerns GE Reason DR60 firmware with a hard-coded password used for inbound authentication or outbound communication to external components in all versions before 02A04.1. Affected product/versions (as stated): Reason DR60 firmware prior to 02A04.1. Root cause (as describ...
CVE-2021-27438
The software contains a hard-coded password it uses for its own inbound authentication or for outbound communication to external components on the Reason DR60 all firmware versions prior to 02A04.1...
CVE-2021-27438
CVE-2021-27438 concerns GE Reason DR60 firmware prior to 02A04.1, where externally influenced input can be used to construct code segments, enabling a code injection vulnerability. The vulnerability affects the DR60 digital fault recorder, with impact described as allow code execution through cra...
GE Reason DR60 Code Injection Vulnerability
The Reason DR60 is a centralized, all-in-one multi-function digital fault recorder DFR from GE. A code injection vulnerability exists in GE Reason DR60 firmware prior to version 02A04.1. The vulnerability stems from the software using externally influenced input from an upstream component to...
GE Reason DR60 Improper Privilege Vulnerability
The Reason DR60 is a centralized, all-in-one multi-function digital fault recorder DFR from GE. A privilege impropriety vulnerability exists in GE Reason DR60 firmware prior to version 02A04.1. The vulnerability stems from the software performing operations with a privilege level higher than the...