In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X CARESCAPE Central Station (CSCS) Versions 2.X, B450 Version 2.X, B650 Version 1.X, B650 Version 2.X, B850 Version 1.X, B850 Version 2.X, an input validation vulnerability exists in the web-based system configuration utility that could allow an attacker to obtain arbitrary remote code execution.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsma-20-023-01 | Third Party Advisory US Government Resource |
https://www3.gehealthcare.com/~/media/downloads/us/support/site-planning/site-readiness/gehc-gateway_project_implementation_guide_pdf.pdf | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2020-01-24T16:07:54
Updated: 2020-01-24T16:07:54
Reserved: 2020-01-14T00:00:00
Link: CVE-2020-6962
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-01-24T17:15:13.127
Modified: 2020-03-17T17:21:03.433
Link: CVE-2020-6962
JSON object: View
Redhat Information
No data.
CWE