Vulnerability Details CVE-2018-19003
GE Mark VIe, EX2100e, EX2100e_Reg, and LS2100e Versions 03.03.28C to 05.02.04C, EX2100e All versions prior to v04.09.00C, EX2100e_Reg All versions prior to v04.09.00C, and LS2100e All versions prior to v04.09.00C The affected versions of the application have a path traversal vulnerability that fails to restrict the ability of an attacker to gain access to restricted information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 83.2%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2018-19003
-
cpe:2.3:h:ge:ex2100e:-
-
cpe:2.3:h:ge:ls2100e:-
-
cpe:2.3:h:ge:mark_vle:-
-
cpe:2.3:o:ge:ex2100e:-
-
cpe:2.3:o:ge:ex2100e_firmware:03.03.28c
-
cpe:2.3:o:ge:ex2100e_firmware:04.09.00c
-
cpe:2.3:o:ge:ex2100e_firmware:05.02.04c
-
cpe:2.3:o:ge:ls2100e_firmware:03.03.28c
-
cpe:2.3:o:ge:ls2100e_firmware:04.09.00c
-
cpe:2.3:o:ge:ls2100e_firmware:05.02.04c
-
cpe:2.3:o:ge:mark_vle_firmware:03.03.28c
-
cpe:2.3:o:ge:mark_vle_firmware:05.02.04c