MEDIUM🇬🇧 English

CVE-2021-27420

CVSS 5.3v3.1pub. 2022-03-23upd. 2024-11-21

GE UR firmware versions prior to version 8.1x web server task does not properly handle receipt of unsupported HTTP verbs, resulting in the web server becoming temporarily unresponsive after receiving a series of unsupported HTTP requests. When unresponsive, the web server is inaccessible. By itself, this is not particularly significant as the relay remains effective in all other functionality and communication channels.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
  • Ge Multilin B30

    HW
    Ge
    wszystkie wersje
  • Ge Multilin B30 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin B90

    HW
    Ge
    wszystkie wersje
  • Ge Multilin B90 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin C30

    HW
    Ge
    wszystkie wersje
  • Ge Multilin C30 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin C60

    HW
    Ge
    wszystkie wersje
  • Ge Multilin C60 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin C70

    HW
    Ge
    wszystkie wersje
  • Ge Multilin C70 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin C95

    HW
    Ge
    wszystkie wersje
  • Ge Multilin C95 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin D30

    HW
    Ge
    wszystkie wersje
  • Ge Multilin D30 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin D60

    HW
    Ge
    wszystkie wersje
  • Ge Multilin D60 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin F35

    HW
    Ge
    wszystkie wersje
  • Ge Multilin F35 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin F60

    HW
    Ge
    wszystkie wersje
  • Ge Multilin F60 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin G30

    HW
    Ge
    wszystkie wersje
  • Ge Multilin G30 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin G60

    HW
    Ge
    wszystkie wersje
  • Ge Multilin G60 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin L30

    HW
    Ge
    wszystkie wersje
  • Ge Multilin L30 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin L60

    HW
    Ge
    wszystkie wersje
  • Ge Multilin L60 Firmware

    OS
    Ge
    < 8.10
  • Ge Multilin L90

    HW
    Ge
    wszystkie wersje
  • Ge Multilin L90 Firmware

    OS
    Ge
    < 8.10
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2021-27426CRITICAL9.8ten sam produkt

GE UR IED firmware versions prior to version 8.1x with “Basic” security variant does not allow the disabling o...

CVE-2021-27428CRITICAL9.8ten sam produkt

GE UR IED firmware versions prior to version 8.1x supports upgrading firmware using UR Setup configuration too...

CVE-2021-27422HIGH7.5ten sam produkt

GE UR firmware versions prior to version 8.1x web server interface is supported on UR over HTTP protocol. It a...

CVE-2021-27418MEDIUM5.3ten sam produkt

GE UR firmware versions prior to version 8.1x supports web interface with read-only access. The device fails t...

CVE-2021-27424MEDIUM5.3ten sam produkt

GE UR firmware versions prior to version 8.1x shares MODBUS memory map as part of the communications guide. GE...

CVE-2021-27420 — MEDIUM 5.3 | CVEbaza.pl