CVE-2018-10611

CVE-2018-10611

Vendor Ge
Product MDS PulseNET and MDS PulseNET Enterprise
Weakness CWE-287 · Improper authentication
Published June 4, 2018
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

Java remote method invocation (RMI) input port in GE MDS PulseNET and MDS PulseNET Enterprise version 3.2.1 and prior may be exploited to allow unauthenticated users to launch applications and support remote code execution through web services.

Key dates

02Disclosure timeline

June 4, 2018 CVE published
September 16, 2024 Record updated