Vulnerability-Lookup

CVE-2024-1486 (GCVE-0-2024-1486)

Vulnerability from cvelistv5 – Published: 2024-05-14 15:10 – Updated: 2024-08-16 18:15

Title

Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices

Summary

Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices

Severity

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-732 - Incorrect Permission Assignment for Critical Resource

Assigner

GEHC

References

1 reference

URL	Tags
https://securityupdate.gehealthcare.com/

Impacted products

22 products

Vendor	Product	Version
GE HealthCare	Venue	Affected: R1 Affected: R2 Affected: R3 , ≤ R3.3 (custom) Affected: R4 , ≤ R4.2 (custom)
GE HealthCare	Venue Go	Affected: R2 Affected: R3 , ≤ R3.3 (custom) Affected: R4 , ≤ R4.2 (custom)
GE HealthCare	Venue Fit	Affected: R3 , ≤ R3.3 (custom) Affected: R4 , ≤ R4.2 (custom)
GE HealthCare	LOGIQ e	Affected: R7 , ≤ R9.1.4 (custom) Affected: R8 , ≤ R10.1.3 (custom) Affected: R9 , ≤ R11.0.2 (custom)
GE HealthCare	LOGIQ He	Affected: 0 , ≤ R9.3.1 (custom)
GE HealthCare	Vivid E	Affected: E95 , < 206 (custom) Affected: E90 , < 206 (custom) Affected: E80 , < 206 (custom) Affected: E9 113.2 , ≤ 113.2 (custom)
GE HealthCare	Vivid S	Affected: 70N , < 206 (custom) Affected: 60N , < 206 (custom)
GE HealthCare	Vivid T	Affected: T8 , < 206 (custom) Affected: T9 , < 206 (custom)
GE HealthCare	Vivid iq	Affected: 0 , < 206 (custom)
GE HealthCare	Invenia ABUS	Affected: 1.2.3
GE HealthCare	Invenia ABUS 2.0	Affected: 0 , < 2.2.9 (custom)
gehealthcare	venue_firmware	Affected: R1 Affected: R2 Affected: R3 , ≤ R3.3 (custom) Affected: R4 , ≤ R4.2 (custom) cpe:2.3:o:gehealthcare:venue_firmware::::::::
gehealthcare	venue_go_firmware	Affected: R2 Affected: R3 , ≤ R3.3 (custom) Affected: R4 , ≤ R4.2 (custom) cpe:2.3:o:gehealthcare:venue_go_firmware::::::::
gehealthcare	venue_fit_firmware	Affected: R3 , ≤ R3.3 (custom) Affected: R4 , ≤ R4.2 (custom) cpe:2.3:o:gehealthcare:venue_fit_firmware::::::::
gehealthcare	logiq_e_firmware	Affected: R7 , ≤ R9.1.4 (custom) Affected: R8 , ≤ R10.1.3 (custom) Affected: R9 , ≤ R11.0.2 (custom) cpe:2.3:o:gehealthcare:logiq_e_firmware::::::::
gehealthcare	logiq_he_firmware	Affected: 0 , ≤ R9.3.1 (custom) cpe:2.3:o:gehealthcare:logiq_he_firmware::::::::
gehealthcare	vivid_e_firmware	Affected: E95 , < 206 (custom) Affected: E90 , < 206 (custom) Affected: E80 , < 206 (custom) Affected: E9 113.2 , ≤ 113.2 (custom) cpe:2.3:o:gehealthcare:vivid_e_firmware::::::::
gehealthcare	vivid_s_firmware	Affected: 70N , < 206 (custom) Affected: 60N , < 206 (custom) cpe:2.3:o:gehealthcare:vivid_s_firmware::::::::
gehealthcare	vivid_t_firmware	Affected: T8 , < 206 (custom) Affected: T9 , < 206 (custom) cpe:2.3:o:gehealthcare:vivid_t_firmware::::::::
gehealthcare	vivid_iq_firmware	Affected: 0 , < 206 (custom) cpe:2.3:o:gehealthcare:vivid_iq_firmware::::::::
gehealthcare	invenia_abus_firmware	Affected: 1.2.3 cpe:2.3:o:gehealthcare:invenia_abus_firmware::::::::
gehealthcare	invenia_abus_2.0_firmware	Affected: 0 , < 2.2.9 (custom) cpe:2.3:o:gehealthcare:invenia_abus_2.0_firmware::::::::

Credits

Andrea Palanca and Gabriele Quagliarella of Nozomi Networks

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T18:40:21.121Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://securityupdate.gehealthcare.com/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:venue_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "venue_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "status": "affected",
                "version": "R1"
              },
              {
                "status": "affected",
                "version": "R2"
              },
              {
                "lessThanOrEqual": "R3.3",
                "status": "affected",
                "version": "R3",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "R4.2",
                "status": "affected",
                "version": "R4",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:venue_go_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "venue_go_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "status": "affected",
                "version": "R2"
              },
              {
                "lessThanOrEqual": "R3.3",
                "status": "affected",
                "version": "R3",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "R4.2",
                "status": "affected",
                "version": "R4",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:venue_fit_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "venue_fit_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThanOrEqual": "R3.3",
                "status": "affected",
                "version": "R3",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "R4.2",
                "status": "affected",
                "version": "R4",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:logiq_e_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "logiq_e_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThanOrEqual": "R9.1.4",
                "status": "affected",
                "version": "R7",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "R10.1.3",
                "status": "affected",
                "version": "R8",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "R11.0.2",
                "status": "affected",
                "version": "R9",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:logiq_he_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "logiq_he_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThanOrEqual": "R9.3.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:vivid_e_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "vivid_e_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThan": "206",
                "status": "affected",
                "version": "E95",
                "versionType": "custom"
              },
              {
                "lessThan": "206",
                "status": "affected",
                "version": "E90",
                "versionType": "custom"
              },
              {
                "lessThan": "206",
                "status": "affected",
                "version": "E80",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "113.2",
                "status": "affected",
                "version": "E9 113.2",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:vivid_s_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "vivid_s_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThan": "206",
                "status": "affected",
                "version": "70N",
                "versionType": "custom"
              },
              {
                "lessThan": "206",
                "status": "affected",
                "version": "60N",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:vivid_t_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "vivid_t_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThan": "206",
                "status": "affected",
                "version": "T8",
                "versionType": "custom"
              },
              {
                "lessThan": "206",
                "status": "affected",
                "version": "T9",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:vivid_iq_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "vivid_iq_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThan": "206",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:invenia_abus_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "invenia_abus_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "status": "affected",
                "version": "1.2.3"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:invenia_abus_2.0_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "invenia_abus_2.0_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThan": "2.2.9",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-1486",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-12T14:08:59.014421Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-16T18:15:02.675Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Venue",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "status": "affected",
              "version": "R1"
            },
            {
              "status": "affected",
              "version": "R2"
            },
            {
              "lessThanOrEqual": "R3.3",
              "status": "affected",
              "version": "R3",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "R4.2",
              "status": "affected",
              "version": "R4",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Venue Go",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "status": "affected",
              "version": "R2"
            },
            {
              "lessThanOrEqual": "R3.3",
              "status": "affected",
              "version": "R3",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "R4.2",
              "status": "affected",
              "version": "R4",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Venue Fit",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThanOrEqual": "R3.3",
              "status": "affected",
              "version": "R3",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "R4.2",
              "status": "affected",
              "version": "R4",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "LOGIQ e",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThanOrEqual": "R9.1.4",
              "status": "affected",
              "version": "R7",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "R10.1.3",
              "status": "affected",
              "version": "R8",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "R11.0.2",
              "status": "affected",
              "version": "R9",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "LOGIQ He",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThanOrEqual": "R9.3.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vivid E",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThan": "206",
              "status": "affected",
              "version": "E95",
              "versionType": "custom"
            },
            {
              "lessThan": "206",
              "status": "affected",
              "version": "E90",
              "versionType": "custom"
            },
            {
              "lessThan": "206",
              "status": "affected",
              "version": "E80",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "113.2",
              "status": "affected",
              "version": "E9 113.2",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vivid S",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThan": "206",
              "status": "affected",
              "version": "70N",
              "versionType": "custom"
            },
            {
              "lessThan": "206",
              "status": "affected",
              "version": "60N",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vivid T",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThan": "206",
              "status": "affected",
              "version": "T8",
              "versionType": "custom"
            },
            {
              "lessThan": "206",
              "status": "affected",
              "version": "T9",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vivid iq",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThan": "206",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Invenia ABUS",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "status": "affected",
              "version": "1.2.3"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Invenia ABUS 2.0",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThan": "2.2.9",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Andrea Palanca and Gabriele Quagliarella of Nozomi Networks"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices"
            }
          ],
          "value": "Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices"
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-1",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-732",
              "description": "CWE-732 Incorrect Permission Assignment for Critical Resource",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-14T15:10:22.262Z",
        "orgId": "171caf72-b841-4e04-a68e-93493aff2b94",
        "shortName": "GEHC"
      },
      "references": [
        {
          "url": "https://securityupdate.gehealthcare.com/"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "171caf72-b841-4e04-a68e-93493aff2b94",
    "assignerShortName": "GEHC",
    "cveId": "CVE-2024-1486",
    "datePublished": "2024-05-14T15:10:22.262Z",
    "dateReserved": "2024-02-13T22:34:57.386Z",
    "dateUpdated": "2024-08-16T18:15:02.675Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-1486",
      "date": "2026-06-06",
      "epss": "0.0006",
      "percentile": "0.19008"
    },
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices\"}, {\"lang\": \"es\", \"value\": \"Elevaci\\u00f3n de privilegios mediante lista de control de acceso mal configurada en dispositivos de ultrasonido de GE HealthCare\"}]",
      "id": "CVE-2024-1486",
      "lastModified": "2024-11-21T08:50:41.247",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"171caf72-b841-4e04-a68e-93493aff2b94\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.4, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.4, \"impactScore\": 5.9}]}",
      "published": "2024-05-14T16:15:57.903",
      "references": "[{\"url\": \"https://securityupdate.gehealthcare.com/\", \"source\": \"171caf72-b841-4e04-a68e-93493aff2b94\"}, {\"url\": \"https://securityupdate.gehealthcare.com/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "171caf72-b841-4e04-a68e-93493aff2b94",
      "vulnStatus": "Awaiting Analysis",
      "weaknesses": "[{\"source\": \"171caf72-b841-4e04-a68e-93493aff2b94\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-732\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-1486\",\"sourceIdentifier\":\"171caf72-b841-4e04-a68e-93493aff2b94\",\"published\":\"2024-05-14T16:15:57.903\",\"lastModified\":\"2024-11-21T08:50:41.247\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices\"},{\"lang\":\"es\",\"value\":\"Elevaci\u00f3n de privilegios mediante lista de control de acceso mal configurada en dispositivos de ultrasonido de GE HealthCare\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"171caf72-b841-4e04-a68e-93493aff2b94\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.4,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"171caf72-b841-4e04-a68e-93493aff2b94\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-732\"}]}],\"references\":[{\"url\":\"https://securityupdate.gehealthcare.com/\",\"source\":\"171caf72-b841-4e04-a68e-93493aff2b94\"},{\"url\":\"https://securityupdate.gehealthcare.com/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://securityupdate.gehealthcare.com/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-01T18:40:21.121Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-1486\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-06-12T14:08:59.014421Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:o:gehealthcare:venue_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"venue_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"R1\"}, {\"status\": \"affected\", \"version\": \"R2\"}, {\"status\": \"affected\", \"version\": \"R3\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R3.3\"}, {\"status\": \"affected\", \"version\": \"R4\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R4.2\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:gehealthcare:venue_go_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"venue_go_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"R2\"}, {\"status\": \"affected\", \"version\": \"R3\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R3.3\"}, {\"status\": \"affected\", \"version\": \"R4\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R4.2\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:gehealthcare:venue_fit_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"venue_fit_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"R3\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R3.3\"}, {\"status\": \"affected\", \"version\": \"R4\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R4.2\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:gehealthcare:logiq_e_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"logiq_e_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"R7\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R9.1.4\"}, {\"status\": \"affected\", \"version\": \"R8\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R10.1.3\"}, {\"status\": \"affected\", \"version\": \"R9\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R11.0.2\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:gehealthcare:logiq_he_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"logiq_he_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R9.3.1\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:gehealthcare:vivid_e_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"vivid_e_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"E95\", \"lessThan\": \"206\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"E90\", \"lessThan\": \"206\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"E80\", \"lessThan\": \"206\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"E9 113.2\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"113.2\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:gehealthcare:vivid_s_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"vivid_s_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"70N\", \"lessThan\": \"206\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"60N\", \"lessThan\": \"206\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:gehealthcare:vivid_t_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"vivid_t_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"T8\", \"lessThan\": \"206\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"T9\", \"lessThan\": \"206\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:gehealthcare:vivid_iq_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"vivid_iq_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"206\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:gehealthcare:invenia_abus_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"invenia_abus_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"1.2.3\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:gehealthcare:invenia_abus_2.0_firmware:*:*:*:*:*:*:*:*\"], \"vendor\": \"gehealthcare\", \"product\": \"invenia_abus_2.0_firmware\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2.2.9\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-06-12T14:55:17.373Z\"}}], \"cna\": {\"title\": \"Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Andrea Palanca and Gabriele Quagliarella of Nozomi Networks\"}], \"impacts\": [{\"capecId\": \"CAPEC-1\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.4, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"GE HealthCare\", \"product\": \"Venue\", \"versions\": [{\"status\": \"affected\", \"version\": \"R1\"}, {\"status\": \"affected\", \"version\": \"R2\"}, {\"status\": \"affected\", \"version\": \"R3\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R3.3\"}, {\"status\": \"affected\", \"version\": \"R4\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R4.2\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"GE HealthCare\", \"product\": \"Venue Go\", \"versions\": [{\"status\": \"affected\", \"version\": \"R2\"}, {\"status\": \"affected\", \"version\": \"R3\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R3.3\"}, {\"status\": \"affected\", \"version\": \"R4\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R4.2\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"GE HealthCare\", \"product\": \"Venue Fit\", \"versions\": [{\"status\": \"affected\", \"version\": \"R3\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R3.3\"}, {\"status\": \"affected\", \"version\": \"R4\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R4.2\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"GE HealthCare\", \"product\": \"LOGIQ e\", \"versions\": [{\"status\": \"affected\", \"version\": \"R7\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R9.1.4\"}, {\"status\": \"affected\", \"version\": \"R8\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R10.1.3\"}, {\"status\": \"affected\", \"version\": \"R9\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R11.0.2\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"GE HealthCare\", \"product\": \"LOGIQ He\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"R9.3.1\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"GE HealthCare\", \"product\": \"Vivid E\", \"versions\": [{\"status\": \"affected\", \"version\": \"E95\", \"lessThan\": \"206\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"E90\", \"lessThan\": \"206\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"E80\", \"lessThan\": \"206\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"E9 113.2\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"113.2\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"GE HealthCare\", \"product\": \"Vivid S\", \"versions\": [{\"status\": \"affected\", \"version\": \"70N\", \"lessThan\": \"206\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"60N\", \"lessThan\": \"206\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"GE HealthCare\", \"product\": \"Vivid T\", \"versions\": [{\"status\": \"affected\", \"version\": \"T8\", \"lessThan\": \"206\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"T9\", \"lessThan\": \"206\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"GE HealthCare\", \"product\": \"Vivid iq\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"206\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"GE HealthCare\", \"product\": \"Invenia ABUS\", \"versions\": [{\"status\": \"affected\", \"version\": \"1.2.3\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"GE HealthCare\", \"product\": \"Invenia ABUS 2.0\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2.2.9\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://securityupdate.gehealthcare.com/\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-732\", \"description\": \"CWE-732 Incorrect Permission Assignment for Critical Resource\"}]}], \"providerMetadata\": {\"orgId\": \"171caf72-b841-4e04-a68e-93493aff2b94\", \"shortName\": \"GEHC\", \"dateUpdated\": \"2024-05-14T15:10:22.262Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-1486\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-16T18:15:02.675Z\", \"dateReserved\": \"2024-02-13T22:34:57.386Z\", \"assignerOrgId\": \"171caf72-b841-4e04-a68e-93493aff2b94\", \"datePublished\": \"2024-05-14T15:10:22.262Z\", \"assignerShortName\": \"GEHC\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

BDU:2024-04476

Vulnerability from fstec - Published: 13.02.2024

Title

Уязвимость систем ультразвуковой диагностики GE HealthCare, связанная с неверным назначением разрешений для критического ресурса, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации и повысить свои привилегии

Description

Уязвимость систем ультразвуковой диагностики GE HealthCare связана с неверным назначением разрешений для критического ресурса. Эксплуатация уязвимости может позволить нарушителю получить несанкционированный доступ к защищаемой информации и повысить свои привилегии

Severity


                    
                      AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Vendor

GE Healthcare

Software Name

Invenia ABUS, Vivid E90, Vivid E95, Vivid S60N, Vivid E80, Vivid S70N, Vivid T8, Vivid iQ, Vivid T9, LOGIQ Fortis, LOGIQ E10s, LOGIQ E10, Venue Go R2, Venue R1, Venue R2, Versana Essential R2, Venue Go R3, Venue R3, Venue Go R4, Venue R4, Venue Fit R4, Venue Fit R3, LOGIQ e R9, LOGIQ e R8, LOGIQ e R7 (9.2.x), LOGIQ e R7 (9.1.x), LOGIQ He, Voluson Expert 22, Voluson Expert 18, Voluson Expert 16 BT24, Voluson Expert 16, Voluson SWIFT+, Voluson SWIFT, Voluson Expert 22 BT24, Voluson Expert 18 BT24, Voluson SWIFT BT24, Voluson SWIFT+ BT24

Software Version

- (Invenia ABUS), - (Vivid E90), - (Vivid E95), - (Vivid S60N), - (Vivid E80), - (Vivid S70N), - (Vivid T8), - (Vivid iQ), - (Vivid T9), - (LOGIQ Fortis), - (LOGIQ E10s), - (LOGIQ E10), - (Venue Go R2), - (Venue R1), - (Venue R2), - (Versana Essential R2), - (Venue Go R3), - (Venue R3), - (Venue Go R4), - (Venue R4), - (Venue Fit R4), - (Venue Fit R3), - (LOGIQ e R9), - (LOGIQ e R8), - (LOGIQ e R7 (9.2.x)), - (LOGIQ e R7 (9.1.x)), - (LOGIQ He), - (Voluson Expert 22), - (Voluson Expert 18), - (Voluson Expert 16 BT24), - (Voluson Expert 16), - (Voluson SWIFT+), - (Voluson SWIFT), - (Voluson Expert 22 BT24), - (Voluson Expert 18 BT24), - (Voluson SWIFT BT24), - (Voluson SWIFT+ BT24)

Possible Mitigations

Компенсирующие меры: - ограничение возможности подключения к устройствам через SMB по 2638 TCP-порту (порт сервера базы данных SQL Anywhere); - использование средств межсетевого экранирования и средств обнаружения и предотвращения вторжений (IDS/IPS) для отслеживания подключений к устройству; - ограничение доступа к устройству из внешних сетей (Интернет); - использование виртуальных частных сетей для организации удаленного доступа (VPN); - сегментирование сети для ограничения возможности удалённого доступа к медицинскому оборудованию. Использование рекомендаций производителя: https://www.gehealthcare.com/services/lifecycle-management/product-security-portal/security

Reference

https://www.gehealthcare.com/services/lifecycle-management/product-security-portal/security https://www.nozominetworks.com/blog/ge-healthcare-vivid-ultrasound-vulnerabilities https://vuldb.com/?id.264232 https://www.cisa.gov/news-events/ics-medical-advisories/icsma-20-049-02 https://www.gehealthcare.com/products/ultrasound https://www.gehealthcare.com/products/ultrasound/vivid https://www.gehealthcare.com/products/ultrasound/voluson https://www.gehealthcare.com/products/ultrasound/logiq https://www.gehealthcare.com/products/ultrasound/versana

CWE

CWE-286, CWE-732

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
  "CVSS 3.0": "AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "GE Healthcare",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Invenia ABUS), - (Vivid E90), - (Vivid E95), - (Vivid S60N), - (Vivid E80), - (Vivid S70N), - (Vivid T8), - (Vivid iQ), - (Vivid T9), - (LOGIQ Fortis), - (LOGIQ E10s), - (LOGIQ E10), - (Venue Go R2), - (Venue R1), - (Venue R2), - (Versana Essential R2), - (Venue Go R3), - (Venue R3), - (Venue Go R4), - (Venue R4), - (Venue Fit R4), - (Venue Fit R3), - (LOGIQ e R9), - (LOGIQ e R8), - (LOGIQ e R7 (9.2.x)), - (LOGIQ e R7 (9.1.x)), - (LOGIQ He), - (Voluson Expert 22), - (Voluson Expert 18), - (Voluson Expert 16 BT24), - (Voluson Expert 16), - (Voluson SWIFT+), - (Voluson SWIFT), - (Voluson Expert 22 BT24), - (Voluson Expert 18 BT24), - (Voluson SWIFT BT24), - (Voluson SWIFT+ BT24)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n- \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u043c \u0447\u0435\u0440\u0435\u0437 SMB \u043f\u043e 2638 TCP-\u043f\u043e\u0440\u0442\u0443 (\u043f\u043e\u0440\u0442 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0431\u0430\u0437\u044b \u0434\u0430\u043d\u043d\u044b\u0445 SQL Anywhere);\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u044d\u043a\u0440\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0438 \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044f \u0432\u0442\u043e\u0440\u0436\u0435\u043d\u0438\u0439 (IDS/IPS) \u0434\u043b\u044f \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0439 \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0443;\n- \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0443 \u0438\u0437 \u0432\u043d\u0435\u0448\u043d\u0438\u0445 \u0441\u0435\u0442\u0435\u0439 (\u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442);\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0445 \u0447\u0430\u0441\u0442\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0439 \u0434\u043b\u044f \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (VPN);\n- \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0435\u0442\u0438 \u0434\u043b\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u043c\u0435\u0434\u0438\u0446\u0438\u043d\u0441\u043a\u043e\u043c\u0443 \u043e\u0431\u043e\u0440\u0443\u0434\u043e\u0432\u0430\u043d\u0438\u044e.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://www.gehealthcare.com/services/lifecycle-management/product-security-portal/security",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "13.02.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "11.06.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "11.06.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-04476",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-1486",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0443\u0435\u0442",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Invenia ABUS, Vivid E90, Vivid E95, Vivid S60N, Vivid E80, Vivid S70N, Vivid T8, Vivid iQ, Vivid T9, LOGIQ Fortis, LOGIQ E10s, LOGIQ E10, Venue Go R2, Venue R1, Venue R2, Versana Essential R2, Venue Go R3, Venue R3, Venue Go R4, Venue R4, Venue Fit R4, Venue Fit R3, LOGIQ e R9, LOGIQ e R8, LOGIQ e R7 (9.2.x), LOGIQ e R7 (9.1.x), LOGIQ He, Voluson Expert 22, Voluson Expert 18, Voluson Expert 16 BT24, Voluson Expert 16, Voluson SWIFT+, Voluson SWIFT, Voluson Expert 22 BT24, Voluson Expert 18 BT24, Voluson SWIFT BT24, Voluson SWIFT+ BT24",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0438\u0441\u0442\u0435\u043c \u0443\u043b\u044c\u0442\u0440\u0430\u0437\u0432\u0443\u043a\u043e\u0432\u043e\u0439 \u0434\u0438\u0430\u0433\u043d\u043e\u0441\u0442\u0438\u043a\u0438 GE HealthCare, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0432\u0435\u0440\u043d\u044b\u043c \u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435\u043c \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u0439 \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u0440\u0435\u0441\u0443\u0440\u0441\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e\u0435 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f\u043c\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f (CWE-286), \u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e\u0435 \u043f\u0440\u0438\u0441\u0432\u043e\u0435\u043d\u0438\u0435 \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u0439 \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u043d\u043e\u0433\u043e \u0440\u0435\u0441\u0443\u0440\u0441\u0430 (CWE-732)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0438\u0441\u0442\u0435\u043c \u0443\u043b\u044c\u0442\u0440\u0430\u0437\u0432\u0443\u043a\u043e\u0432\u043e\u0439 \u0434\u0438\u0430\u0433\u043d\u043e\u0441\u0442\u0438\u043a\u0438 GE HealthCare \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0432\u0435\u0440\u043d\u044b\u043c \u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435\u043c \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u0439 \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u0440\u0435\u0441\u0443\u0440\u0441\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.gehealthcare.com/services/lifecycle-management/product-security-portal/security\nhttps://www.nozominetworks.com/blog/ge-healthcare-vivid-ultrasound-vulnerabilities\nhttps://vuldb.com/?id.264232\nhttps://www.cisa.gov/news-events/ics-medical-advisories/icsma-20-049-02\nhttps://www.gehealthcare.com/products/ultrasound\nhttps://www.gehealthcare.com/products/ultrasound/vivid\nhttps://www.gehealthcare.com/products/ultrasound/voluson\nhttps://www.gehealthcare.com/products/ultrasound/logiq\nhttps://www.gehealthcare.com/products/ultrasound/versana",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-286, CWE-732",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,9)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,4)"
}

FKIE_CVE-2024-1486

Vulnerability from fkie_nvd - Published: 2024-05-14 16:15 - Updated: 2026-04-15 00:35

Severity

7.4 (High) - CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices

References

	URL	Tags
	171caf72-b841-4e04-a68e-93493aff2b94	https://securityupdate.gehealthcare.com/
	af854a3a-2127-422b-91ae-364da2661108	https://securityupdate.gehealthcare.com/

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices"
    },
    {
      "lang": "es",
      "value": "Elevaci\u00f3n de privilegios mediante lista de control de acceso mal configurada en dispositivos de ultrasonido de GE HealthCare"
    }
  ],
  "id": "CVE-2024-1486",
  "lastModified": "2026-04-15T00:35:42.020",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.4,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.4,
        "impactScore": 5.9,
        "source": "171caf72-b841-4e04-a68e-93493aff2b94",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-05-14T16:15:57.903",
  "references": [
    {
      "source": "171caf72-b841-4e04-a68e-93493aff2b94",
      "url": "https://securityupdate.gehealthcare.com/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://securityupdate.gehealthcare.com/"
    }
  ],
  "sourceIdentifier": "171caf72-b841-4e04-a68e-93493aff2b94",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-732"
        }
      ],
      "source": "171caf72-b841-4e04-a68e-93493aff2b94",
      "type": "Secondary"
    }
  ]
}

GHSA-5X5P-62R5-2XX8

Vulnerability from github – Published: 2024-05-14 18:30 – Updated: 2024-05-14 18:30

Details

Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices

Severity

7.4 (High)


                  
                    CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-1486"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-732"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-05-14T16:15:57Z",
    "severity": "HIGH"
  },
  "details": "Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices",
  "id": "GHSA-5x5p-62r5-2xx8",
  "modified": "2024-05-14T18:30:58Z",
  "published": "2024-05-14T18:30:58Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-1486"
    },
    {
      "type": "WEB",
      "url": "https://securityupdate.gehealthcare.com"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2024-1486

Vulnerability from gsd - Updated: 2024-02-14 06:02

Details

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Aliases

CVE-2024-1486

JSON

To clipboard

{
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2024-1486"
      ],
      "id": "GSD-2024-1486",
      "modified": "2024-02-14T06:02:26.891694Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2024-1486",
        "STATE": "RESERVED"
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
          }
        ]
      }
    }
  }
}

ICSMA-20-049-02

Vulnerability from csaf_cisa - Published: 2020-02-18 07:00 - Updated: 2024-05-16 06:00

Summary

GE Healthcare Ultrasound products (Update A)

Notes

Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.

Risk evaluation: Successful exploitation of these vulnerabilities could allow an attacker with physical access to gain access to the operating system of affected devices.

Critical infrastructure sectors: Healthcare and Public Health

Countries/areas deployed: Worldwide

Company headquarters location: United States

Recommended Practices: CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as:

Recommended Practices: Ensure there is physical protections in place to prevent the devices from any unauthorized access.

Recommended Practices: Encourage security awareness throughout the hospital staff to ensure clinical staff will report any unauthorized person trying to login or otherwise tamper with a medical device.

Recommended Practices: Educate employees on social engineering, both online and in-person/on-site. This is often used to gain confidence to unauthorized resources.

Recommended Practices: Where additional information is needed, refer to existing cybersecurity in medical device guidance issued by the FDA.

Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.

Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.

Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.

Recommended Practices: Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.

Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.

Recommended Practices: No known public exploitation specifically targeting these vulnerabilities has been reported to CISA at this time. These vulnerabilities are not exploitable remotely.

CVE-2020-6977

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-693 - Protection Mechanism Failure

Affected products

Known affected 6 products

Product	Version	Remediation
GE Healthcare Vivid products, not including EchoPAC: vers:all/* GE Healthcare / Vivid products, not including EchoPAC	vers:all/*	Mitigation Mitigation fix
GE Healthcare LOGIQ, not including LOGIQ 100 Pro: vers:all/* GE Healthcare / LOGIQ, not including LOGIQ 100 Pro	vers:all/*	Mitigation Mitigation fix
GE Healthcare Voluson, not including ImageVault: vers:all/* GE Healthcare / Voluson, not including ImageVault	vers:all/*	Mitigation Mitigation fix
GE Healthcare Versana Essential: vers:all/* GE Healthcare / Versana Essential	vers:all/*	Mitigation Mitigation fix
GE Healthcare Invenia ABUS Scan station, not including VScan product line: vers:all/* GE Healthcare / Invenia ABUS Scan station, not including VScan product line	vers:all/*	Mitigation Mitigation fix
GE Healthcare Venue, not including Venue 40 R1-3 and Venue 50 R4-5: vers:all/* GE Healthcare / Venue, not including Venue 40 R1-3 and Venue 50 R4-5	vers:all/*	Mitigation Mitigation fix

CVE-2024-1486

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-286 - Incorrect User Management

Affected products

Known affected 6 products

Product	Version	Remediation
GE Healthcare Vivid products, not including EchoPAC: vers:all/* GE Healthcare / Vivid products, not including EchoPAC	vers:all/*	Mitigation Mitigation fix
GE Healthcare LOGIQ, not including LOGIQ 100 Pro: vers:all/* GE Healthcare / LOGIQ, not including LOGIQ 100 Pro	vers:all/*	Mitigation Mitigation fix
GE Healthcare Voluson, not including ImageVault: vers:all/* GE Healthcare / Voluson, not including ImageVault	vers:all/*	Mitigation Mitigation fix
GE Healthcare Versana Essential: vers:all/* GE Healthcare / Versana Essential	vers:all/*	Mitigation Mitigation fix
GE Healthcare Invenia ABUS Scan station, not including VScan product line: vers:all/* GE Healthcare / Invenia ABUS Scan station, not including VScan product line	vers:all/*	Mitigation Mitigation fix
GE Healthcare Venue, not including Venue 40 R1-3 and Venue 50 R4-5: vers:all/* GE Healthcare / Venue, not including Venue 40 R1-3 and Venue 50 R4-5	vers:all/*	Mitigation Mitigation fix

References

15 references

URL	Category
https://raw.githubusercontent.com/cisagov/CSAF/de…	self
https://www.cisa.gov/news-events/ics-medical-advi…	self
https://www.fda.gov/MedicalDevices/DigitalHealth/…	external
https://www.cisa.gov/resources-tools/resources/ic…	external
https://www.cisa.gov/sites/default/files/publicat…	external
https://www.cisa.gov/topics/industrial-control-systems	external
https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-…	external
https://us-cert.cisa.gov/sites/default/files/reco…	external
https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B	external
https://www.cisa.gov/uscert/sites/default/files/p…	external
https://www.cisa.gov/uscert/ncas/tips/ST04-014	external
http://web.nvd.nist.gov/view/vuln/detail?vulnId=C…	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
http://web.nvd.nist.gov/view/vuln/detail?vulnId=C…	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external

Acknowledgments

scip AG. Marc Ruef Rocco Gagliardi

Secureworks Michael Aguilar

Protozoan.nl Jonathan Bouman

Nozomi Networks. Andrea Palanca Gabriele Quagliarella

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "Marc Ruef",
          "Rocco Gagliardi"
        ],
        "organization": "scip AG.",
        "summary": "reporting to GE Healthcare"
      },
      {
        "names": [
          "Michael Aguilar"
        ],
        "organization": "Secureworks",
        "summary": "providing additional reports to GE Healthcare"
      },
      {
        "names": [
          "Jonathan Bouman"
        ],
        "organization": "Protozoan.nl",
        "summary": "providing additional reports to GE Healthcare"
      },
      {
        "names": [
          "Andrea Palanca",
          "Gabriele Quagliarella"
        ],
        "organization": "Nozomi Networks.",
        "summary": "providing additional reports to GE Healthcare"
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited",
      "tlp": {
        "label": "WHITE",
        "url": "https://us-cert.cisa.gov/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
        "title": "Legal Notice"
      },
      {
        "category": "summary",
        "text": "Successful exploitation of these vulnerabilities could allow an attacker with physical access to gain access to the operating system of affected devices.",
        "title": "Risk evaluation"
      },
      {
        "category": "other",
        "text": "Healthcare and Public Health",
        "title": "Critical infrastructure sectors"
      },
      {
        "category": "other",
        "text": "Worldwide",
        "title": "Countries/areas deployed"
      },
      {
        "category": "other",
        "text": "United States",
        "title": "Company headquarters location"
      },
      {
        "category": "general",
        "text": "CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as:",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Ensure there is physical protections in place to prevent the devices from any unauthorized access.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Encourage security awareness throughout the hospital staff to ensure clinical staff will report any unauthorized person trying to login or otherwise tamper with a medical device.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Educate employees on social engineering, both online and in-person/on-site.  This is often used to gain confidence to unauthorized resources.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Where additional information is needed, refer to existing cybersecurity in medical device guidance issued by the FDA.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "No known public exploitation specifically targeting these vulnerabilities has been reported to CISA at this time. These vulnerabilities are not exploitable remotely.",
        "title": "Recommended Practices"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "central@cisa.dhs.gov",
      "name": "CISA",
      "namespace": "https://www.cisa.gov/"
    },
    "references": [
      {
        "category": "self",
        "summary": "ICS Advisory ICSMA-20-049-02 JSON",
        "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2020/icsma-20-049-02.json"
      },
      {
        "category": "self",
        "summary": "ICSA Advisory ICSMA-20-049-02 - Web Version",
        "url": "https://www.cisa.gov/news-events/ics-medical-advisories/icsma-20-049-02"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.fda.gov/MedicalDevices/DigitalHealth/ucm373213.htm"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/topics/industrial-control-systems"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/sites/default/files/publications/emailscams0905.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ncas/tips/ST04-014"
      }
    ],
    "title": "GE Healthcare Ultrasound products (Update A)",
    "tracking": {
      "current_release_date": "2024-05-16T06:00:00.000000Z",
      "generator": {
        "engine": {
          "name": "CISA CSAF Generator",
          "version": "1.0.0"
        }
      },
      "id": "ICSMA-20-049-02",
      "initial_release_date": "2020-02-18T07:00:00.000000Z",
      "revision_history": [
        {
          "date": "2020-02-18T07:00:00.000000Z",
          "legacy_version": "Initial",
          "number": "1",
          "summary": "Initial Publication"
        },
        {
          "date": "2024-05-16T06:00:00.000000Z",
          "legacy_version": "Update A",
          "number": "2",
          "summary": "Update A - Added CVE-2024-1486, updated CVSS score for CVE-2020-6977."
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "GE Healthcare Vivid products, not including EchoPAC: vers:all/*",
                  "product_id": "CSAFPID-0001"
                }
              }
            ],
            "category": "product_name",
            "name": "Vivid products, not including EchoPAC"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "GE Healthcare LOGIQ, not including LOGIQ 100 Pro: vers:all/*",
                  "product_id": "CSAFPID-0002"
                }
              }
            ],
            "category": "product_name",
            "name": "LOGIQ, not including LOGIQ 100 Pro"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "GE Healthcare Voluson, not including ImageVault: vers:all/*",
                  "product_id": "CSAFPID-0003"
                }
              }
            ],
            "category": "product_name",
            "name": "Voluson, not including ImageVault"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "GE Healthcare Versana Essential: vers:all/*",
                  "product_id": "CSAFPID-0004"
                }
              }
            ],
            "category": "product_name",
            "name": "Versana Essential"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "GE Healthcare Invenia ABUS Scan station, not including VScan product line: vers:all/*",
                  "product_id": "CSAFPID-0005"
                }
              }
            ],
            "category": "product_name",
            "name": "Invenia ABUS Scan station, not including VScan product line"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "GE Healthcare Venue, not including Venue 40 R1-3 and Venue 50 R4-5: vers:all/*",
                  "product_id": "CSAFPID-0006"
                }
              }
            ],
            "category": "product_name",
            "name": "Venue, not including Venue 40 R1-3 and Venue 50 R4-5"
          }
        ],
        "category": "vendor",
        "name": "GE Healthcare"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-6977",
      "cwe": {
        "id": "CWE-693",
        "name": "Protection Mechanism Failure"
      },
      "notes": [
        {
          "category": "summary",
          "text": "A restricted desktop environment escape vulnerability exists in the Kiosk Mode functionality of affected devices. Specially crafted inputs can allow the user to escape the restricted environment, resulting in access to the underlying operating system.",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "web.nvd.nist.gov",
          "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-6977"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "mitigation",
          "details": "GE Healthcare recommends organizations restrict physical access to devices by unauthorized individuals. Additionally, where available, GE Healthcare recommends users enable the \"system lock\" password in the Administration GUI menu if possible. This will require a password to be entered before the system can be accessed.  The \u2018system lock\u0027 would limit non-authenticated users from accessing the application.",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006"
          ]
        },
        {
          "category": "mitigation",
          "details": "GE Healthcare recommends that users with questions reach out to a GE Healthcare service representative and users with an active support account visit the GE Healthcare product security portal (login required).",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006"
          ],
          "url": "https://securityupdate.gehealthcare.com"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006"
          ]
        }
      ]
    },
    {
      "cve": "CVE-2024-1486",
      "cwe": {
        "id": "CWE-286",
        "name": "Incorrect User Management"
      },
      "notes": [
        {
          "category": "summary",
          "text": "These ultrasound products are vulnerable to elevation of privileges via misconfigured access control list.",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "web.nvd.nist.gov",
          "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-1486"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "mitigation",
          "details": "GE Healthcare recommends organizations restrict physical access to devices by unauthorized individuals. Additionally, where available, GE Healthcare recommends users enable the \"system lock\" password in the Administration GUI menu if possible. This will require a password to be entered before the system can be accessed.  The \u2018system lock\u0027 would limit non-authenticated users from accessing the application.",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006"
          ]
        },
        {
          "category": "mitigation",
          "details": "GE Healthcare recommends that users with questions reach out to a GE Healthcare service representative and users with an active support account visit the GE Healthcare product security portal (login required).",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006"
          ],
          "url": "https://securityupdate.gehealthcare.com"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006"
          ]
        }
      ]
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-1486 (GCVE-0-2024-1486)

BDU:2024-04476

FKIE_CVE-2024-1486

GHSA-5X5P-62R5-2XX8

GSD-2024-1486

ICSMA-20-049-02

Tags

Sightings

Nomenclature