exploitDog

CVE-2018-15362

Опубликовано: 07 дек. 2018

Источник: nvd

CVSS3: 9.1

CVSS2: 6.4

EPSS Низкий

Описание

XXE in GE Proficy Cimplicity GDS versions 9.0 R2, 9.5, 10.0

Ссылки

http://www.securityfocus.com/bid/106133
Third Party Advisory
VDB Entry
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/07/klcert-18-025-general-electric-proficy-gds-xml-external-entity-xxe/
Mitigation
Third Party Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-18-340-01
Mitigation
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/106133
Third Party Advisory
VDB Entry
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/07/klcert-18-025-general-electric-proficy-gds-xml-external-entity-xxe/
Mitigation
Third Party Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-18-340-01
Mitigation
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ge:cimplicity:9.0_r2:*:*:*:*:*:*:*

cpe:2.3:a:ge:cimplicity:9.5:*:*:*:*:*:*:*

cpe:2.3:a:ge:cimplicity:10.0:*:*:*:*:*:*:*

EPSS

Процентиль: 81%

0.01566

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

CWE-611

Связанные уязвимости

GHSA-2j45-pj39-84jw

CVSS3: 9.1

github

больше 3 лет назад

XXE in GE Proficy Cimplicity GDS versions 9.0 R2, 9.5, 10.0

EPSS

Процентиль: 81%

0.01566

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

CWE-611