Skip to main content
Security Advisory

General Electric Communicator

Restrict access to TCP/5433 and TCP/1233. Verify and manually correct filesystem permissions per VA-2019-03, or apply the software update available from GE.

Risk Information

affected product:

GE Communicator: prior to v4.0.517

Limited Threat

CVE ID

CVE-2019-6564

CVE-2019-6546

CVE-2019-6548

ID

CVE-2019-6564

Source

Dragos

Skill Level

N/A

CVSSV3 BASE / TEMPORAL SCORE

N/A

CVSSV3 vector

N/A

Affecting

  • GE Communicator: prior to v4.0.517
  • Vulnerability Type

    Uncontrolled Search Path Element

    Use of Hard-coded Credentials

    Improper Access Control

    Disclosure Timeline

    05/02/2019 - Dragos discloses issue