In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilized hard coded SMB credentials, which may allow an attacker to remotely execute arbitrary code.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsma-20-023-01 | Third Party Advisory US Government Resource |
https://www3.gehealthcare.com/~/media/downloads/us/support/site-planning/site-readiness/gehc-gateway_project_implementation_guide_pdf.pdf | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2020-01-24T16:31:37
Updated: 2020-01-24T16:31:37
Reserved: 2020-01-14T00:00:00
Link: CVE-2020-6963
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-01-24T17:15:13.220
Modified: 2020-03-17T17:21:56.637
Link: CVE-2020-6963
JSON object: View
Redhat Information
No data.