Every CVE whose affected-product data names Ge Mds Pulsenet, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2015-6459 — CVSS 10.0 (critical): Absolute path traversal vulnerability in the download feature in FileDownloadServlet in GE Digital Energy MDS PulseNET and MDS PulseNET…
CVE-2018-10611 — CVSS 9.8 (critical): Java remote method invocation (RMI) input port in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior may be exploited to…
CVE-2015-6456 — CVSS 9.0 (critical): GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 have hardcoded credentials for a support account, which allows…
CVE-2018-10615 — CVSS 8.1 (high): Directory traversal may lead to files being exfiltrated or deleted on the GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and…
CVE-2018-10613 — CVSS 7.5 (high): Multiple variants of XML External Entity (XXE) attacks may be used to exfiltrate data from the host Windows platform in GE MDS PulseNET and…