CVE-2016-5788

CRITICAL

General Electric GE - Privilege Escalation

Title source: llm

Description

General Electric (GE) Bently Nevada 3500/22M USB with firmware before 5.0 and Bently Nevada 3500/22M Serial have open ports, which makes it easier for remote attackers to obtain privileged access via unspecified vectors.

References (2)

Core 2

Core References

Third Party Advisory, US Government Resource x_refsource_misc

https://ics-cert.us-cert.gov/advisories/ICSA-16-252-01

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/93452

Scores

CVSS v3 10.0

EPSS 0.0231

EPSS Percentile 81.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Details

CWE

CWE-254 CWE-285

Status published

Products (2)

ge/bently_nevada_3500\/22m_serial_firmware

ge/bently_nevada_3500\/22m_usb_firmware

Published Nov 25, 2016

Tracked Since Feb 18, 2026