GE Healthcare Centricity DMS Ad Hoc Reporting Trust Management Vulnerability

GE Healthcare Centricity DMS is a General Electric GE cardiology clinical education data management system for the healthcare industry. A security vulnerability exists in the Ad Hoc Reporting feature of GE Healthcare Centricity DMS version 4.2, which originates from an Administrator user using...

CVE-2007-6757

GE Healthcare Centricity DMS 4.2, 4.1, and 4.0 has a password of Muse!Admin for the Museadmin user, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or product that requires a fixed value...

Hardcoded credentials

The Ad Hoc Reporting feature in GE Healthcare Centricity DMS 4.2 has a password of Never!Mind for the Administrator user, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or product that requires a...

Hardcoded credentials

GE Healthcare Centricity DMS 4.2, 4.1, and 4.0 has a password of Muse!Admin for the Museadmin user, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or product that requires a fixed value...

CVE-2007-6757

GE Healthcare Centricity DMS 4.2, 4.1, and 4.0 has a password of Muse!Admin for the Museadmin user, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or product that requires a fixed value...

CVE-2013-7405

The Ad Hoc Reporting feature in GE Healthcare Centricity DMS 4.2 has a password of Never!Mind for the Administrator user, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or product that requires a...

CVE-2007-6757

CVE-2007-6757 concerns GE Healthcare Centricity DMS with a Museadmin account password Muse!Admin, reflecting default or hard-coded credentials across Centricity DMS and related GE Healthcare products. The ICS-CERT advisory (ICSMA-18-037-02) documents the use of default/hard-coded credentials in m...

CVE-2013-7405

The CVE-2013-7405 entry concerns GE Healthcare Centricity DMS 4.2, specifically the Ad Hoc Reporting feature where the Administrator password is set to Never!Mind. The core detail available across connected sources is that this password is problematic and that an attacker could potentially take c...