Lucene search
K

Researchers Uncover 11 Security Flaws in GE HealthCare Ultrasound Machines

🗓️ 16 May 2024 10:12:00Reported by The Hacker NewsType 
thn
 thn
🔗 thehackernews.com👁 50 Views

Researchers unveil security flaws in GE HealthCare Ultrasound Machines. Flaws enable ransomware implant, patient data manipulation, and arbitrary code execution

Related
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2022-23450
12 Apr 202209:15
attackerkb
BDU FSTEC
The vulnerability of the SIMATIC Energy Manager Basic and SIMATIC Energy Manager PRO software lies in the ability to restore unreliable data in memory, allowing a perpetrator to execute arbitrary code.
13 Jul 202200:00
bdu_fstec
BDU FSTEC
The vulnerability of GE HealthCare EchoPAC medical software, related to the use of pre-installed account data, allows a perpetrator to elevate their privileges and execute arbitrary codes.
20 May 202400:00
bdu_fstec
BDU FSTEC
The vulnerability of the development package for integrating cloud services and communication functions in IoT devices. The Kalay SDK, a microprogramming software for video surveillance cameras like Owlet Cam v1 and Owlet Cam v2, has a flaw related to the failure to eliminate special elements used in the operating system’s command set. This allows attackers to execute arbitrary commands and increase their privileges.
24 May 202400:00
bdu_fstec
BDU FSTEC
The vulnerability of GE HealthCare EchoPAC medical software, related to insufficient access control, allows attackers to escalate their privileges.
3 Jun 202400:00
bdu_fstec
BDU FSTEC
The vulnerability of the deleteFiles() function in the web application of the Common Service Desktop of the ultrasonic diagnostic system from GE Healthcare allows a malicious actor to gain unauthorized access to protected information.
3 Jun 202400:00
bdu_fstec
BDU FSTEC
The vulnerability of the getAllFolderContents() function in the web application of the Common Service Desktop of the ultrasonic diagnostic system GE HealthCare allows a malicious individual to gain unauthorized access to protected information.
3 Jun 202400:00
bdu_fstec
BDU FSTEC
The vulnerability of GE HealthCare’s ultrasonic diagnostic system’s Kiosk Mode allows intruders to bypass security restrictions, gain unauthorized access to protected information, and enhance their privileges.
11 Jun 202400:00
bdu_fstec
BDU FSTEC
The vulnerability of the development package for integrating cloud services and communication functions in IoT devices. The Kalay SDK, a microprogramming software for video surveillance cameras such as Owlet Cam v1, Owlet Cam v2, Wyze Cam v3, and Roku Indoor Camera SE, is related to the use of uninitialized variables, allowing attackers to disclose confidential information.
23 Jul 202400:00
bdu_fstec
Circl
CVE-2020-6977
17 May 202417:05
circl
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

24 May 2024 05:02Current
9.4High risk
Vulners AI Score9.4
CVSS 3.19.6 - 9.8
CVSS 210
EPSS0.35758
SSVC
50