CVE-2022-24118
- EPSS 0.06%
- Veröffentlicht 26.12.2022 05:15:11
- Zuletzt bearbeitet 12.04.2025 00:15:16
Certain General Electric Renewable Energy products allow attackers to use a code to trigger a reboot into the factory default configuration. This affects iNET and iNET II before 8.3.0, SD before 6.4.7, TD220X before 2.0.16, and TD220MAX before 1.2.6.
CVE-2022-24119
- EPSS 0.08%
- Veröffentlicht 26.12.2022 05:15:11
- Zuletzt bearbeitet 12.04.2025 00:15:16
Certain General Electric Renewable Energy products have a hidden feature for unauthenticated remote access to the device configuration shell. This affects iNET and iNET II before 8.3.0.
CVE-2022-24120
- EPSS 0.02%
- Veröffentlicht 26.12.2022 05:15:11
- Zuletzt bearbeitet 12.04.2025 00:15:16
Certain General Electric Renewable Energy products store cleartext credentials in flash memory. This affects iNET and iNET II before 8.3.0.
CVE-2022-24116
- EPSS 0.04%
- Veröffentlicht 26.12.2022 05:15:10
- Zuletzt bearbeitet 12.04.2025 01:15:14
Certain General Electric Renewable Energy products have inadequate encryption strength. This affects iNET and iNET II before 8.3.0.
CVE-2022-24117
- EPSS 0.08%
- Veröffentlicht 26.12.2022 05:15:10
- Zuletzt bearbeitet 12.04.2025 00:15:14
Certain General Electric Renewable Energy products download firmware without an integrity check. This affects iNET and iNET II before 8.3.0, SD before 6.4.7, TD220X before 2.0.16, and TD220MAX before 1.2.6.