CVE-2010-5309 - GE Healthcare CADStream Server has a default password of confirma for the admin user, which has unsp

CVE-2010-5309

Summary

GE Healthcare CADStream Server has a default password of confirma for the admin user, which has unspecified impact and attack vectors.

References

Vulnerable Configurations

cpe:2.3:o:gehealthcare:cadstream_server_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:gehealthcare:cadstream_server_firmware:-:*:*:*:*:*:*:*

CVSS

CWE

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

confirm	http://apps.gehealthcare.com/servlet/ClientServlet/MR360+operator+manual+paper.pdf?REQ=RAA&DIRECTION=5339461-1EN&FILENAME=MR360%2Boperator%2Bmanual%2Bpaper.pdf&FILEREV=4&DOCREV_ORG=4
misc	http://www.forbes.com/sites/thomasbrewster/2015/07/10/vulnerable-breasts/ https://ics-cert.us-cert.gov/advisories/ICSMA-18-037-02 https://twitter.com/digitalbond/status/619250429751222277

Last major update

28-03-2018 - 01:29

Published

04-08-2015 - 14:59

Last modified

28-03-2018 - 01:29