Vulnerabilidades en GE Vernova
11 resultadosCVE-2025-3222CRITICALSmallworld SWMFS Improper AuthenticationEPSS 0.5%CVE-2025-7719MEDIUMSmallworld SWMFS Arbitrary File OpsEPSS 0.3%CVE-2025-27256HIGHMissing Authentication for Critical Function vulnerability in GE Vernova Enervista UR Setup application allows Authentication Bypass due to EPSS 0.3%CVE-2026-1762LOWEnervista UR Setup Directory Traversal VulnerabilityEPSS 0.2%CVE-2025-27253MEDIUMA CWE-15 "External Control of System or Configuration Setting" in GE Vernova UR IED family devices from version 7.0 up to 8.60 allows an attEPSS 0.2%CVE-2025-3223MEDIUMWorkstationST EGD Configuration Server Path Traversal VulnerabilityEPSS 0.2%CVE-2026-1763MEDIUMEnervista UR Setup DLL HijackingEPSS 0.2%CVE-2025-27254HIGHCWE-282 "Improper Ownership Management" in GE Vernova EnerVista UR Setup allows Authentication Bypass.
The software's startup authenticatioEPSS 0.2%CVE-2025-27257MEDIUMInsufficient Verification of Data Authenticity vulnerability in GE Vernova UR IED family devices allows an authenticated user to install a mEPSS 0.2%CVE-2025-27255HIGHUse of Hard-coded Credentials vulnerability in GE Vernova EnerVista UR Setup allows Privilege Escalation. The local user database is encryptEPSS 0.1%CVE-2025-9038HIGHS1 Agile Privilege EscalationEPSS 0.1%