GE Digital Security Advisories ka18a000000byAeAAI | GE Customer Center

GE Digital Security Advisories

Auto-Notification

Please visit the customer profile page on the support site to sign up for auto-notifications for GE Digital products
to receive immediate notice of security alerts and information.


Instructions on how to sign up for notices: Customer Center - How to sign up for Auto-Notifications


2021

IssuedIDTitleLink
Feb 5GED Security Advisory 21-01iFIX VulnerabilitiesGE Digital Security Advisory GED 21-01


2020

IssuedIDTitleLink
Dec 17GED Security Advisory 20-05Industrial Gateway Server (IGS) VulnerabilityGE Digital Security Advisory GED 20-05
Sep 18GED Security Advisory 20-04APM Classic VulnerabilitiesGE Digital Security Advisory GED 20-04
Jul 09GED Security Advisory 20-03APM Connect and Ghostcat vulnerability GE Digital Security Advisory GED 20-03
Mar 30GED Security Advisory 20-02Local Privilege Escalation in CIMPLICITYGE Digital Security Advisory GED 20-02
Jan 27GED Security Advisory 20-01EKANS ransom softwareGE Digital Security Advisory GED 20-01


2019

IssuedIDTitleLink
Nov 23GED Security Advisory 19-01Privilege Escalation in iFIXGE Digital Security Advisory GED 19-01


2018

IssuedIDTitleLink
Nov 23GED Security Advisory 18-01GE Global Discovery Server Blind XXE VulnerabilityGE Digital Security Advisory GED 18-01
May 01GED SecComm 18-02Gemalto Kaspersky Common Licensing VulnerabilitiesGE Security Communication GED SecComm 18-02
Mar 18GED SecComm 18-01Gigasoft ActiveX VulnerabilityGE Security Communication GED SecComm 18-01

2017

IssuedIDTitleLink
May 17GEAC 17-01Ransomware event, known as WannaCryGE Security Advisory GEAC 17-01

2016

IssuedIDTitleLink
July 12GED 16-01CIMPLICITY Services DACLsGE Digital Security Advisory GED 16-01
Nov 29GED 16-02Password Management VulnerabilityGE Digital Security Advisory GED 16-02

2015

IssuedIDTitleLink
Sept 4GEIP15-02Proficy Mobile Change to Supported BrowserProficy Mobile Change to Supported Browser
May 22GEIP15-01Impact of SSL3.0 POODLE VulnerabilityGE Security Advisory GEIP15-01

2014

IssuedIDTitleLink
Oct 28GEIP14-05Proficy HMI/SCADA - CIMPLICITY Targeted by an Advanced Threat ActorGE Security Advisory GEIP14-05
Oct 14GEIP14-04Proficy HMI/SCADA – DNP3 Driver from Catapult SoftwareGE Security Advisory GEIP14-04
Oct 14GEIP14-03Proficy HMI/SCADA – CIMPLICITY Elevation of PrivilegeGE Security Advisory GEIP14-03
Oct 14GEIP14-02Proficy HMI/SCADA – CIMPLICITY CimView Memory Access ViolationGE Security Advisory GEIP14-02
Oct 14GEIP14-01Proficy Industrial Gateway Server Driver from KepwareGE Security Advisory GEIP14-01
Oct 14GEIP13-02-2Proficy HMI/SCADA – TCPTASK Denial of ServiceGE Security Advisory GEIP13-02-2

2013

IssuedIDTitleLink
Dec 19GEIP13-06Proficy HMI/SCADA – CIMPLICITY WebView remote code execGE Security Advisory GEIP13-06
Dec 19GEIP13-05Proficy HMI/SCADA – CIMPLICITY web access remote code execGE Security Advisory GEIP13-05
Oct 7GEIP13-04Proficy DNP3 I/O Driver: Denial of ServiceGE Security Advisory GEIP13-04
Jun 18GEIP13-03Proficy HMI/SCADA – CIMPLICITY WebView buffer overflowsGE Security Advisory GEIP13-03
Feb 19GEIP13-02Proficy HMI/SCADA – iFIX TCP/IP Task Denial of ServiceGE Security Advisory GEIP13-02
Feb 19GEIP13-01Proficy HMI/SCADA – iFIX I/O Drivers Default PasswordGE Security Advisory GEIP13-01

2012

IssuedIDTitleLink
Dec 4GEIP12-19Proficy CIMPLICITY: WebView information disclosureGE Security Advisory GEIP12-19
October 2GEIP12-15Proficy Portal: Information disclosure (authentication design)GE Security Advisory GEIP12-15
October 2GEIP12-14Proficy Portal: Information disclosure in default configurationGE Security Advisory GEIP12-14
October 2GEIP12-13Proficy CIMPLICITY: Multiple vulnerabilities in built-in web serverGE Security Advisory GEIP12-13
August 14GEIP12-10Proficy Portal: Multiple memory corruption vulnerabilitiesProficy Security Advisory GEIP12-10
April 24GEIP12-05Proficy iFIX: Buffer overflow in TCP/IP Task componentGE Security Advisory GEIP12-05
April 24GEIP12-04Proficy Historian, iFIX, Batch, Pulse, SI7 Driver: HTML HelpGE Security Advisory GEIP12-04
Jan 31GEIP12-03Proficy Portal: Directory traversalProficy Security Advisory GEIP12-03
Jan 31GEIP12-02Proficy Plant Applications: Memory corruptionProficy Security Advisory GEIP12-02
Jan 31GEIP12-01Proficy Historian: Data archiver memory corruptionProficy Security Advisory GEIP12-01

2011

IssuedIDTitleLink
Aug 29GEIP11-01Proficy Historian: ihDataArchiver buffer overflowProficy Security Advisory Information (GEIP11-02, GEIP11-03)
Aug 29GEIP11-02Proficy Plant Applications: Multiple services buffer overflowProficy Security Advisory Information (GEIP11-02, GEIP11-03)
Aug 29GEIP11-03Proficy Historian: Web Administrator cross-site scripting (XSS)Proficy Security Advisory Information (GEIP11-02, GEIP11-03)

Previous

IssuedIDTitleLink
2/11/09n/aProficy iFIX: Authentication vulnerabilitiesSecurity Issue: CERT Reported Vulnerabilities in iFIX Security