CVE-2016-0862

N/A

Descricao

General Electric (GE) Industrial Solutions UPS SNMP/Web Adapter devices with firmware before 4.8 allow remote authenticated users to obtain sensitive cleartext account information via unspecified vectors.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado2/5/2016

Ultima modificacao4/12/2025

Fontenvd

Avistamentos honeypot0

Produtos afetados

ge:snmp\/web_adapter_1024746ge:snmp\/web_adapter_1024747ge:snmp\/web_adapter_1024748ge:snmp\/web_adapter_1024921ge:snmp\/web_adapter_firmware

Fraquezas (CWE)

CWE-200

Referencias

http://apps.geindustrial.com/publibrary/checkout/Application%20and%20Technical%7CGEIS_SNMP%7CPDF&filename=GEIS_SNMP.pdf(ics-cert@hq.dhs.gov)

http://packetstormsecurity.com/files/135586/GE-Industrial-Solutions-UPS-SNMP-Adapter-Command-Injection.html(ics-cert@hq.dhs.gov)

http://seclists.org/fulldisclosure/2016/Feb/21(ics-cert@hq.dhs.gov)

https://ics-cert.us-cert.gov/advisories/ICSA-16-033-02(ics-cert@hq.dhs.gov)

https://www.exploit-db.com/exploits/39408/(ics-cert@hq.dhs.gov)

http://apps.geindustrial.com/publibrary/checkout/Application%20and%20Technical%7CGEIS_SNMP%7CPDF&filename=GEIS_SNMP.pdf(af854a3a-2127-422b-91ae-364da2661108)

http://packetstormsecurity.com/files/135586/GE-Industrial-Solutions-UPS-SNMP-Adapter-Command-Injection.html(af854a3a-2127-422b-91ae-364da2661108)

http://seclists.org/fulldisclosure/2016/Feb/21(af854a3a-2127-422b-91ae-364da2661108)

https://ics-cert.us-cert.gov/advisories/ICSA-16-033-02(af854a3a-2127-422b-91ae-364da2661108)

https://www.exploit-db.com/exploits/39408/(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.