CVE-2023-49716: Emerson Rosemount GC370XA, GC700XA, GC1500XA Command Injection

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-49716

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Emerson Rosemount GC370XA, GC700XA, GC1500XA Command Injection

Source: NVD (National Vulnerability Database)

Vulnerability Description

In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an authenticated user with network access could run arbitrary commands from a remote computer.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

在命令中使用的特殊元素转义处理不恰当(命令注入)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Emerson Rosemount GC370XA、GC700XA、GC1500XA 命令注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Emerson Rosemount GC370XA等都是美国艾默生电气（Emerson）公司的一款气相色谱仪。 Emerson Rosemount GC370XA、GC700XA、GC1500XA存在命令注入漏洞。攻击者利用该漏洞可以从远程计算机运行任意命令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Emerson	Rosemount GC370XA	0 ~ Version 4.1.5	-
Emerson	Rosemount GC700XA	0 ~ Version 4.1.5	-
Emerson	Rosemount GC1500XA	0 ~ Version 4.1.5	-

II. Public POCs for CVE-2023-49716

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-49716

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same product: Rosemount GC370XA

Same vendor: Emerson

Same weakness: CWE-77

V. Comments for CVE-2023-49716

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2023-49716

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-49716

III. Intelligence Information for CVE-2023-49716

IV. Related Vulnerabilities

V. Comments for CVE-2023-49716

Leave a comment