Known Vulnerabilities for products from Gehealthcare

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Gehealthcare".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Additional devices specifications by Gehealthcare can be found at device.report : Gehealthcare

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2020-25179	GE Healthcare Imaging and Ultrasound Products may allow specific credentials to be exposed during transport over the network.	9.8 - CRITICAL	2020-12-14	2021-09-23
CVE-2020-25175	GE Healthcare Imaging and Ultrasound Products may allow specific credentials to be exposed during transport over the network.	9.8 - CRITICAL	2020-12-14	2021-04-30
CVE-2020-6966	In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC...	10 - CRITICAL	2020-01-24	2020-03-17
CVE-2020-6965	In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC...	9.9 - CRITICAL	2020-01-24	2020-03-17
CVE-2020-6964	In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC...	8.6 - HIGH	2020-01-24	2020-03-17
CVE-2020-6963	In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC...	10 - CRITICAL	2020-01-24	2020-03-17
CVE-2020-6962	In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CI...	10 - CRITICAL	2020-01-24	2020-03-17
CVE-2020-6961	In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CI...	10 - CRITICAL	2020-01-24	2020-03-17
CVE-2014-9736	GE Healthcare Centricity Clinical Archive Audit Trail Repository has a default password of initinit for the (1) SSL key manag...	10 - HIGH	2015-08-04	2015-08-04
CVE-2014-7233	GE Healthcare Precision THUNIS-800+ has a default password of (1) 1973 for the factory default System Utilities menu, (2) TH8...	10 - HIGH	2015-08-04	2018-03-28
CVE-2014-7232	GE Healthcare Discovery XR656 and XR656 G2 has a password of (1) 2getin for the insite user, (2) 4$xray for the xruser user, ...	10 - HIGH	2015-08-04	2018-03-28
CVE-2013-7442	GE Healthcare Centricity PACS Workstation 4.0 and 4.0.1 has a password of (1) CANal1 for the Administrator user and (2) iis f...	10 - HIGH	2015-08-04	2018-03-28
CVE-2013-7405	The Ad Hoc Reporting feature in GE Healthcare Centricity DMS 4.2 has a password of Never!Mind for the Administrator user, whi...	10 - HIGH	2015-08-04	2015-08-04
CVE-2013-7404	GE Healthcare Discovery NM 750b has a password of 2getin for the insite account for (1) Telnet and (2) FTP, which has unspeci...	10 - HIGH	2015-08-04	2018-03-28
CVE-2012-6695	GE Healthcare Centricity PACS Workstation 4.0 and 4.0.1 has a password of ddpadmin for the ddpadmin user, which has unspecifi...	10 - HIGH	2015-08-04	2018-03-28
CVE-2012-6694	GE Healthcare Centricity PACS Workstation 4.0 and 4.0.1, and Server 4.0, has a password of 2charGE for the geservice account,...	10 - HIGH	2015-08-04	2018-03-28
CVE-2012-6693	GE Healthcare Centricity PACS 4.0 Server has a default password of (1) nasro for the nasro (ReadOnly) user and (2) nasrw for ...	10 - HIGH	2015-08-04	2018-03-28
CVE-2012-6660	GE Healthcare Precision MPi has a password of (1) orion for the serviceapp user, (2) orion for the clinical operator user, an...	10 - HIGH	2015-08-04	2018-03-28
CVE-2011-5324	The TeraRecon server, as used in GE Healthcare Centricity PACS-IW 3.7.3.7, 3.7.3.8, and possibly other versions, has a passwo...	10 - HIGH	2015-08-04	2015-08-04
CVE-2011-5323	GE Healthcare Centricity PACS-IW 3.7.3.7, 3.7.3.8, and possibly other versions has a password of A11enda1e for the sa SQL ser...	10 - HIGH	2015-08-04	2015-08-06

Results limited to 20 most recent vulnerabilities

Known software with vulnerabilities from Gehealthcare

Type	Vendor	Product	Version
Hardware	Gehealthcare	Apexpro Telemetry Server	-
Operating System	Gehealthcare	Apexpro Telemetry Server Firmware	3.9
Hardware	Gehealthcare	Carescape B450 Monitor	-
Operating System	Gehealthcare	Carescape B450 Monitor Firmware	2.0
Hardware	Gehealthcare	Carescape B650 Monitor	-
Operating System	Gehealthcare	Carescape B650 Monitor Firmware	1.0
Hardware	Gehealthcare	Carescape B850 Monitor	-
Operating System	Gehealthcare	Carescape B850 Monitor Firmware	1.0
Hardware	Gehealthcare	Carescape Central Station Mai700	-
Operating System	Gehealthcare	Carescape Central Station Mai700 Firmware	1.0
Hardware	Gehealthcare	Carescape Central Station Mas700	-
Operating System	Gehealthcare	Carescape Central Station Mas700 Firmware	1.0
Hardware	Gehealthcare	Carescape Telemetry Server Mp100r	-
Operating System	Gehealthcare	Carescape Telemetry Server Mp100r Firmware	4.2
Operating System	Gehealthcare	Centricity Dms Firmware	4.0
Application	Gehealthcare	Centricity Pacs-iw	3.7.3.5
Hardware	Gehealthcare	Clinical Information Center Mp100d	-
Operating System	Gehealthcare	Clinical Information Center Mp100d Firmware	4.0
Hardware	Gehealthcare	Clinical Information Center Mp100r	-
Operating System	Gehealthcare	Clinical Information Center Mp100r Firmware	4.0

Results limited to 20 most recent known configurations