The HIPAA configuration interface in GE Healthcare Optima MR360 has a password of (1) operator for the root account, (2) adw2.0 for the admin account, and (3) adw2.0 for the sdc account, which has unspecified impact and attack vectors. NOTE: it is not clear whether these passwords are default, hardcoded, or dependent on another system or product that requires a fixed value.
References
Configurations
History
21 Nov 2024, 01:23
Type | Values Removed | Values Added |
---|---|---|
References | () http://apps.gehealthcare.com/servlet/ClientServlet/MR360+operator+manual+paper.pdf?REQ=RAA&DIRECTION=5339461-1EN&FILENAME=MR360%2Boperator%2Bmanual%2Bpaper.pdf&FILEREV=4&DOCREV_ORG=4 - | |
References | () http://www.forbes.com/sites/thomasbrewster/2015/07/10/vulnerable-breasts/ - | |
References | () https://ics-cert.us-cert.gov/advisories/ICSMA-18-037-02 - | |
References | () https://twitter.com/digitalbond/status/619250429751222277 - |
Information
Published : 2015-08-04 14:59
Updated : 2024-11-21 01:23
NVD link : CVE-2010-5307
Mitre link : CVE-2010-5307
CVE.ORG link : CVE-2010-5307
JSON object : View
Products Affected
gehealthcare
- optima_mr360_firmware
CWE
CWE-255
Credentials Management Errors