Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2004-2777
HistoryAug 04, 2015 - 2:59 p.m.

CVE-2004-2777

2015-08-0414:59:05
CWE-255
mitre
web.nvd.nist.gov
28
cve-2004-2777
security
vulnerability
ge healthcare
centricity image vault
hardcoded passwords
asaca dvd library
ultrasound database
gemnet license server

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7

Confidence

Low

EPSS

0.003

Percentile

71.6%

JSON

GE Healthcare Centricity Image Vault 3.x has a password of (1) gemnet for the administrator account, (2) webadmin for the webadmin administrator account of the ASACA DVD library, (3) an empty value for the gemsservice account of the Ultrasound Database, and possibly (4) gemnet2002 for the gemnet2002 account of the GEMNet license server, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or product that requires a fixed value.

Affected configurations

Nvd
Node
gehealthcarecentricity_image_vault_firmware
VendorProductVersionCPE
gehealthcarecentricity_image_vault_firmware*cpe:2.3:o:gehealthcare:centricity_image_vault_firmware:*:*:*:*:*:*:*:*

Related

cvelist 1
nvd 1
ics 1
cvelist
cvelist
CVE-2004-2777
2015-08-04 10:00:00
nvd
nvd
CVE-2004-2777
2015-08-04 14:59:05
ics
ics
GE Medical Devices Vulnerability
2018-03-13 12:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7

Confidence

Low

EPSS

0.003

Percentile

71.6%

JSON
Related for CVE-2004-2777
cvelist1nvd1ics1