EUVD-2014-7103

Malware in sbrugna...

GE Healthcare Discovery XR656 and XR656 G2 Trust Management Vulnerability

The GE Healthcare Discovery XR656 and XR656 G2 are both digital medical radiography systems for the healthcare industry from General Electric GE. A security vulnerability exists in the GE Healthcare Discovery XR656 and XR656 G2 that originates from insite users using '2getin' as password; xruser...

CVE-2014-7232

GE Healthcare Discovery XR656 and XR656 G2 has a password of 1 2getin for the insite user, 2 4$xray for the xruser user, and 3 superxr for the root user, which has unspecified impact and attack vectors. NOTE: it is not clear whether these passwords are default, hardcoded, or dependent on another...

Hardcoded credentials

GE Healthcare Discovery XR656 and XR656 G2 has a password of 1 2getin for the insite user, 2 4$xray for the xruser user, and 3 superxr for the root user, which has unspecified impact and attack vectors. NOTE: it is not clear whether these passwords are default, hardcoded, or dependent on another...

CVE-2014-7232

GE Healthcare Discovery XR656 and XR656 Plus devices are affected by a vulnerability due to default or hard-coded credentials (insite user: 2getin; xruser: 4$xray; root: #superxr). The ICS-CERT advisory enumerates affected products and states that successful exploitation could bypass authenticati...