← back
CVE-2018-10613

CVE-2018-10613

EPSS 18.3%CWE-611
Multiple variants of XML External Entity (XXE) attacks may be used to exfiltrate data from the host Windows platform in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior.
Affected products
GE · MDS PulseNET and MDS PulseNET Enterprise

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-18-151-02http://www.gegridsolutions.com/app/DownloadFile.aspx?prod=pulsenet&type=9&file=1http://www.securityfocus.com/bid/104377