Security Advisory
General Electric Communicator
Restrict access to TCP/5433 and TCP/1233. Verify and manually correct filesystem permissions per VA-2019-03, or apply the software update available from GE.
Risk Information
affected product:
GE Communicator: prior to v4.0.517
Limited Threat
CVE ID
CVE-2019-6564
CVE-2019-6546
CVE-2019-6548
ID
CVE-2019-6564
Source
Dragos
Skill Level
N/A
CVSSV3 BASE / TEMPORAL SCORE
N/A
CVSSV3 vector
N/A
Affecting
Vulnerability Type
Uncontrolled Search Path Element
Use of Hard-coded Credentials
Improper Access Control
Disclosure Timeline
05/02/2019 - Dragos discloses issue