How severe is CVE-2022-24117?

CVE-2022-24117 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2022-24117

9.8CRITICAL

Certain General Electric Renewable Energy products download firmware without an integrity check. This affects iNET and iNET II before 8.3.0, SD before 6.4.7, TD220X before 2.0.16, and TD220MAX before

Опубликовано: 12/26/2022Обновлено: 4/12/2025

Описание

Certain General Electric Renewable Energy products download firmware without an integrity check. This affects iNET and iNET II before 8.3.0, SD before 6.4.7, TD220X before 2.0.16, and TD220MAX before 1.2.6.

ИИ-АнализНа базе ИИ

Затронутые продукты

geinet_900_firmware

geinet_900

geinet_ii_900_firmware

geinet_ii_900

gesd1_firmware

gesd1

gesd2_firmware

gesd2

gesd4_firmware

gesd4

gesd9_firmware

gesd9

getd220max_firmware

getd220max

getd220x_firmware

getd220x

Ссылки

https://www.cisa.gov/uscert/ics/advisories/icsa-22-090-06
PatchThird Party AdvisoryUS Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-090-06
PatchThird Party AdvisoryUS Government Resource