Baker Hughes Bentley Nevada 3500 System Firmware 5.0.5
Approved changes feed: RSS · Atom
cpe:2.3:o:bakerhughes:bentley_nevada_3500_system_firmware:5.0.5:*:*:*:*:*:*:*
part: o version: 5.0.5 update: *
| Vendor | Bakerhughes (ce74d102-fdc2-545e-9faf-00be423aec47) |
|---|---|
| Product | Bentley Nevada 3500 System Firmware (dd140a59-3aa5-5502-9f6d-e6a8347ee7ea) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-36857 |
vulnerable | 2026-06-03 14:52:28.078592 |
Baker Hughes Bently Nevada 3500 System Authentication Bypass by Capture-replay
MEDIUM (5.4)
Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05
contains a replay vulnerability which could allow an attacker to
replay older captured packets of traffic to the device to gain access.
Published: 2023-10-18T23:27:31.794Z
Updated: 2025-01-16T21:29:13.101Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-34441 |
vulnerable | 2026-06-03 14:52:16.836586 |
Baker Hughes Bently Nevada 3500 System Cleartext Transmission of Sensitive Information
MEDIUM (6.8)
Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05
contains a cleartext transmission vulnerability which could allow an attacker to
steal the authentication secret from communication traffic to the device and reuse it for arbitrary requests.
Published: 2023-10-18T23:22:29.808Z
Updated: 2024-09-11T20:10:19.553Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-34437 |
vulnerable | 2026-06-03 14:52:16.815764 |
Baker Hughes Bently Nevada 3500 System Incorrect Permission Assignment for Critical Resource
HIGH (7.5)
Baker Hughes – Bently Nevada 3500 System TDI Firmware version 5.05
contains a vulnerability in their password retrieval functionality which could allow an attacker to access passwords stored on the device.
Published: 2023-10-18T23:25:25.969Z
Updated: 2025-01-16T21:29:21.547Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.