EUVD-2018-17783

Malware in sbrugna...

Silex SD-320AN and GE MobileLink Unauthorized Operation Vulnerability

Silex SD-320AN is a serial device server from Silex Technology, Japan. GE MobileLink GEH-500 is an electrocardiogram analysis system from General Electric GE. A security vulnerability exists in Silex SX-500 and GE MobileLink GEH-500 versions 1.54 and earlier, which arises from the program's failu...

CVE-2018-6020

In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...

Authentication flaw

In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...

CVE-2018-6020

In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...

CVE-2018-6020

In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...

CVE-2018-6020

CVE-2018-6020 affects Silex SX-500 series and GE MobileLink (GEH-500) devices (version 1.54 and earlier). The vulnerability is an improper authentication on certain POST requests, allowing an attacker to modify system settings. Public documentation from ICS-CERT/ENISA details that these products ...

Silex Technology SX-500/SD-320AN or GE Healthcare MobileLink (Update B)

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION : Exploitable Remotely / Low skill level to exploit / Public exploits are available Vendors : Silex Technology, GE Healthcare Equipment : SX-500, SD-320AN, MobileLink Vulnerabilities : Improper Authentication, OS Command Injection 2. UPDATE INFORMATION...