Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2024-27107
PUBLISHED
More InfoOfficial Page
Assigner-GEHC
Assigner Org ID-171caf72-b841-4e04-a68e-93493aff2b94
View Known Exploited Vulnerability (KEV) details
Published At-14 May, 2024 | 17:05
Updated At-02 Aug, 2024 | 00:27
Rejected At-
▼CVE Numbering Authority (CNA)
Weak account password in GE HealthCare EchoPAC products

Weak account password in GE HealthCare EchoPAC products

Affected Products
Vendor
GE HealthCare
Product
EchoPAC Software Only
Default Status
unaffected
Versions
Affected
  • From 0 before 206.82 (custom)
Vendor
GE HealthCare
Product
ImageVault
Default Status
unaffected
Versions
Affected
  • 0
Vendor
GE HealthCare
Product
EchoPAC Turnkey
Default Status
unaffected
Versions
Affected
  • 0
Problem Types
TypeCWE IDDescription
CWECWE-798CWE-798 Use of Hard-coded Credentials
Type: CWE
CWE ID: CWE-798
Description: CWE-798 Use of Hard-coded Credentials
Metrics
VersionBase scoreBase severityVector
3.19.6CRITICAL
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Version: 3.1
Base score: 9.6
Base severity: CRITICAL
Vector:
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
CAPEC-70CAPEC-70 Try Common or Default Usernames and Passwords
CAPEC ID: CAPEC-70
Description: CAPEC-70 Try Common or Default Usernames and Passwords
Solutions
Configurations
Workarounds
Exploits
Credits
finder
Andrea Palanca and Gabriele Quagliarella of Nozomi Networks
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://securityupdate.gehealthcare.com/
N/A
Hyperlink: https://securityupdate.gehealthcare.com/
Resource: N/A
▼Authorized Data Publishers (ADP)
1. CISA ADP Vulnrichment
Affected Products
Vendor
gehealthcare
Product
image_vault
CPEs
  • cpe:2.3:h:gehealthcare:image_vault:-:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • -
Vendor
gehealthcare
Product
echopac_software
CPEs
  • cpe:2.3:a:gehealthcare:echopac_software:-:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • -
Vendor
gehealthcare
Product
echopac_turnkey
CPEs
  • cpe:2.3:a:gehealthcare:echopac_turnkey:-:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • -
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
2. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://securityupdate.gehealthcare.com/
x_transferred
Hyperlink: https://securityupdate.gehealthcare.com/
Resource:
x_transferred
Details not found