CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-14002

GE Infinia/Infinia with Hawkeye 4 medical imaging systems all current versions are affected these devices use default or hard-coded credentials. Successful exploitation of this vulnerability may allow a remote attacker to bypass authentication and gain access to the affected devices.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.154

EPSS Ranking 94.3%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

http://www.securityfocus.com/bid/103405
https://ics-cert.us-cert.gov/advisories/ICSMA-18-037-02
http://www.securityfocus.com/bid/103405
https://ics-cert.us-cert.gov/advisories/ICSMA-18-037-02

Products affected by CVE-2017-14002

Ge » Infinia Hawkeye 4 » Version: N/A

cpe:2.3:h:ge:infinia_hawkeye_4:-
Ge » Infinia Hawkeye 4 Firmware » Version: N/A

cpe:2.3:o:ge:infinia_hawkeye_4_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-14002

Products

Pricing

Contact Us