Assigner | GEHC |
Reserved | 2024-02-19 |
Published | 2024-05-14 |
Updated | 2024-06-04 |
Description
OS command injection vulnerabilities in GE HealthCare ultrasound devices
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Problem types
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Product status
R1
R2
R3
R4
R2
R3
R4
R3
R4
R7
R8
R9
Any version
E95 before 206
E90 before 206
E80 before 206
70N before 206
60N before 206
T8 before 206
T9 before 206
Any version before 206
Any version
BT24 before Ext1
Any version
BT24 before Ext1
Any version
BT24 before Ext1
Any version
BT24
Any version
Any version before R3.2.0
Any version before R3.2.0
Any version before R3.2.0
Credits
Andrea Palanca and Gabriele Quagliarella of Nozomi Networks
References
https://securityupdate.gehealthcare.com/