exploitDog

CVE-2019-6546

Опубликовано: 09 мая 2019

Источник: nvd

CVSS3: 7.8

CVSS2: 6.8

EPSS Низкий

Описание

GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files within the working directory of the program, which may allow an attacker to manipulate widgets and UI elements.

Ссылки

https://ics-cert.us-cert.gov/advisories/ICSA-19-122-02
Mitigation
Third Party Advisory
US Government Resource
https://ics-cert.us-cert.gov/advisories/ICSA-19-122-02
Mitigation
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ge:ge_communicator:*:*:*:*:*:*:*:*

Версия до 4.0.517 (исключая)

EPSS

Процентиль: 36%

0.00155

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-427

CWE-427

Связанные уязвимости

GHSA-9hx4-972h-83x2

CVSS3: 7.8

github

больше 3 лет назад

GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files within the working directory of the program, which may allow an attacker to manipulate widgets and UI elements.

EPSS

Процентиль: 36%

0.00155

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-427

CWE-427