Assigner | GEHC |
Reserved | 2024-02-19 |
Published | 2024-05-14 |
Updated | 2024-08-01 |
Description
Path traversal vulnerability in “deleteFiles” function of Common Service Desktop, a GE HealthCare ultrasound device component
MEDIUM: 6.2 | CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Problem types
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Product status
Default status
unaffected
R1
affected
R2
affected
R3
affected
R4
affected
Default status
unaffected
R2
affected
R3
affected
R4
affected
Default status
unaffected
R3
affected
R4
affected
Default status
unaffected
R7
affected
R8
affected
R9
affected
Default status
unaffected
Any version
affected
Default status
unaffected
E95 before 206
affected
E90 before 206
affected
E80 before 206
affected
Default status
unaffected
70N before 206
affected
60N before 206
affected
Default status
unaffected
T8 before 206
affected
T9 before 206
affected
Default status
unaffected
Any version before 206
affected
Default status
unaffected
Any version
affected
BT24
affected
Default status
unaffected
Any version
affected
BT24
affected
Default status
unaffected
Any version
affected
BT24
affected
Default status
unaffected
Any version
affected
BT24
affected
Default status
unaffected
Any version before R3.2.0
affected
Default status
unaffected
Any version before R3.2.0
affected
Default status
unaffected
Any version before R3.2.0
affected
Credits
Andrea Palanca and Gabriele Quagliarella of Nozomi Networks 0x4005a4aae0
References
https://securityupdate.gehealthcare.com/
cve.org CVE-2024-1629
nvd.nist.gov CVE-2024-1629
Download JSON
Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.