Lucene search
K
GeGe Communicator

6 matches found

CVE
CVE
added 2018/10/02 9:0 p.m.54 views

CVE-2017-7908

CVE-2017-7908 is a heap-based buffer overflow in the Gigasoft ActiveX controls embedded in GE Communicator (v5 and earlier). A malicious HTML file loading these controls can trigger unchecked function calls, enabling arbitrary code execution (and possible DoS) as described for Communicator 3.15 a...

7.6CVSS7.6AI score0.0099EPSS
CVE
CVE
added 2019/05/09 2:28 p.m.53 views

CVE-2019-6548

GE Communicator is affected by CVE-2019-6548: all versions before 4.0.517 contain two backdoor accounts with hardcoded credentials that could allow control over the database. Impact is stated as high (C/H/I/H/A/H) with potential remote exploitation per public advisories. The remediation is to upg...

9.8CVSS9.2AI score0.01277EPSS
CVE
CVE
added 2019/05/09 2:27 p.m.51 views

CVE-2019-6564

GE Communicator (before 4.0.517) is affected by CVE-2019-6564 in which a non-administrative user can place malicious files in the installer directory, potentially gaining administrative privileges during installation or upgrade. Affected components include the Communicator Installer, Application,...

7.8CVSS7.7AI score0.00418EPSS
CVE
CVE
added 2019/05/09 2:51 p.m.47 views

CVE-2019-6544

CVE-2019-6544 affects GE Communicator before 4.0.517. A service runs with SYSTEM privileges, enabling an unprivileged user to perform certain administrative actions and potentially execute scheduled scripts with SYSTEM privileges. Impact and exploitability are context-dependent: some advisories i...

6.8CVSS5.6AI score0.01176EPSS
CVE
CVE
added 2019/05/09 2:51 p.m.47 views

CVE-2019-6566

CVE-2019-6566 affects GE GE Communicator prior to 4.0.517. A non-administrative user can replace the uninstaller with a malicious version, potentially granting administrator privileges. Affected components include Communicator Installer, Communicator Application, Communicator PostgreSQL, Communic...

7.8CVSS7.6AI score0.00342EPSS
CVE
CVE
added 2019/05/09 2:27 p.m.46 views

CVE-2019-6546

CVE-2019-6546 affects GE Communicator prior to 4.0.517. The issue allows placing malicious files in the program’s working directory, potentially enabling manipulation of widgets/UI elements. Affected component/behavior is described in multiple sources (NVD and ICS advisories). Remediation per PT ...

7.8CVSS7.5AI score0.00835EPSS