Every CVE whose affected-product data names Ge Sd4 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2022-24116 — CVSS 9.8 (critical): Certain General Electric Renewable Energy products have inadequate encryption strength. This affects iNET and iNET II before 8.3.0.
CVE-2022-24117 — CVSS 9.8 (critical): Certain General Electric Renewable Energy products download firmware without an integrity check. This affects iNET and iNET II before…
CVE-2022-24119 — CVSS 9.8 (critical): Certain General Electric Renewable Energy products have a hidden feature for unauthenticated remote access to the device configuration…
CVE-2022-24118 — CVSS 9.1 (critical): Certain General Electric Renewable Energy products allow attackers to use a code to trigger a reboot into the factory default…
CVE-2022-24120 — CVSS 4.6 (medium): Certain General Electric Renewable Energy products store cleartext credentials in flash memory. This affects iNET and iNET II before 8.3.0.