← back
CVE-2018-10611

CVE-2018-10611

EPSS 5.1%CWE-287
Java remote method invocation (RMI) input port in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior may be exploited to allow unauthenticated users to launch applications and support remote code execution through web services.
Affected products
GE · MDS PulseNET and MDS PulseNET Enterprise

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-18-151-02http://www.gegridsolutions.com/app/DownloadFile.aspx?prod=pulsenet&type=9&file=1http://www.securityfocus.com/bid/104377