Lucene search

[email protected]CVE-2013-7404

HistoryAug 04, 2015 - 2:59 p.m.

CVE-2013-7404

2015-08-0414:59:21

CWE-255

[email protected]

web.nvd.nist.gov

ge healthcare

discovery nm 750b

hardcoded password

2getin

security vulnerability

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.7%

JSON

GE Healthcare Discovery NM 750b has a password of 2getin for the insite account for (1) Telnet and (2) FTP, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or product that requires a fixed value.

Affected configurations

NVD

Node

gehealthcarediscovery_nm_750b

CPENameOperatorVersion
gehealthcare:discovery_nm_750bgehealthcare discovery nm 750beq*

CPE	Name	Operator	Version
gehealthcare:discovery_nm_750b	gehealthcare discovery nm 750b	eq	*

References

apps.gehealthcare.com/servlet/ClientServlet/5411136-1EN_r3.pdf?REQ=RAA&DIRECTION=5411136-1EN&FILENAME=5411136-1EN_r3.pdf&FILEREV=3&DOCREV_ORG=3

www.forbes.com/sites/thomasbrewster/2015/07/10/vulnerable-breasts/

ics-cert.us-cert.gov/advisories/ICSMA-18-037-02

twitter.com/digitalbond/status/619250429751222277

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.7%

JSON

Related for CVE-2013-7404

cvelist1 prion1 nvd1 openvas1 ics1