CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-25197

A code injection vulnerability exists in one of the webpages in GE Reason RT430, RT431 & RT434 GNSS clocks in firmware versions prior to version 08A06 that could allow an authenticated remote attacker to execute arbitrary code on the system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.036

EPSS Ranking 87.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 9.0

References

Products affected by CVE-2020-25197

Ge » Rt430 » Version: N/A

cpe:2.3:h:ge:rt430:-
Ge » Rt431 » Version: N/A

cpe:2.3:h:ge:rt431:-
Ge » Rt434 » Version: N/A

cpe:2.3:h:ge:rt434:-
Ge » Rt430 Firmware » Version: N/A

cpe:2.3:o:ge:rt430_firmware:-
Ge » Rt430 Firmware » Version: 08a05

cpe:2.3:o:ge:rt430_firmware:08a05
Ge » Rt431 Firmware » Version: N/A

cpe:2.3:o:ge:rt431_firmware:-
Ge » Rt431 Firmware » Version: 08a05

cpe:2.3:o:ge:rt431_firmware:08a05
Ge » Rt434 Firmware » Version: N/A

cpe:2.3:o:ge:rt434_firmware:-
Ge » Rt434 Firmware » Version: 08a05

cpe:2.3:o:ge:rt434_firmware:08a05

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-25197

Products

Pricing

Contact Us