General Electric (GE) Multilink ML800, ML1200, ML1600, and ML2400 switches with firmware before 5.5.0 and ML810, ML3000, and ML3100 switches with firmware before 5.5.0k have hardcoded credentials, which allows remote attackers to modify configuration settings via the web interface.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HGe Multilink Firmware
OSGe≤ 5.5.0≤ 5.5.0kGe Multilink Ml1200
HWGewszystkie wersjeGe Multilink Ml1600
HWGewszystkie wersjeGe Multilink Ml2400
HWGewszystkie wersjeGe Multilink Ml3000
HWGewszystkie wersjeGe Multilink Ml3100
HWGewszystkie wersjeGe Multilink Ml800
HWGewszystkie wersjeGe Multilink Ml810
HWGewszystkie wersje
Related vulnerabilities
GE Multilink ML800, ML1200, ML1600, and ML2400 switches with firmware 4.2.1 and earlier and Multilink ML810, M...
Cross-site scripting (XSS) vulnerability in GE Multilink ML810/3000/3100 series switch 5.2.0 and earlier, and ...
GE Multilink ML800, ML1200, ML1600, and ML2400 switches with firmware 4.2.1 and earlier and Multilink ML810, M...
Buffer overflow w KEPServerEX umożliwiający crash lub wyciek danych
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPS...