Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistIcscertCVELIST:CVE-2019-10966
HistoryJul 10, 2019 - 5:52 p.m.

CVE-2019-10966

2019-07-1017:52:23
CWE-287
icscert
www.cve.org

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.6%

JSON

In GE Aestiva and Aespire versions 7100 and 7900, a vulnerability exists where serial devices are connected via an added unsecured terminal server to a TCP/IP network configuration, which could allow an attacker to remotely modify device configuration and silence alarms.

CNA Affected

[
  {
    "product": "Aestiva and Aespire",
    "vendor": "GE",
    "versions": [
      {
        "status": "affected",
        "version": "versions 7100"
      },
      {
        "status": "affected",
        "version": "versions 7900"
      }
    ]
  }
]

Related

threatpost 1
cve 1
ics 1
nvd 1
prion 1
threatpost
threatpost
Bug in Anesthesia Respirators Allows Cyber-Tampering
2019-07-10 21:15:47
cve
cve
CVE-2019-10966
2019-07-10 18:15:10
ics
ics
GE Aestiva and Aespire Anesthesia (Update A)
2019-07-24 12:00:00
nvd
nvd
CVE-2019-10966
2019-07-10 18:15:10
prion
prion
Code injection
2019-07-10 18:15:00

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.6%

JSON
Related for CVELIST:CVE-2019-10966
threatpost1cve1ics1nvd1prion1