Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-08-04 | CVE-2012-6693 | Credentials Management vulnerability in Gehealthcare Centricity Pacs Server 4.0 GE Healthcare Centricity PACS 4.0 Server has a default password of (1) nasro for the nasro (ReadOnly) user and (2) nasrw for the nasrw (Read/Write) user, which has unspecified impact and attack vectors. | 10.0 |
| 2015-08-04 | CVE-2012-6660 | Credentials Management vulnerability in Gehealthcare Precision MPI GE Healthcare Precision MPi has a password of (1) orion for the serviceapp user, (2) orion for the clinical operator user, and (3) PlatinumOne for the administrator user, which has unspecified impact and attack vectors. | 10.0 |
| 2015-08-04 | CVE-2011-5324 | Credentials Management vulnerability in Gehealthcare Centricity Pacs-Iw 3.7.3.7/3.7.3.8 The TeraRecon server, as used in GE Healthcare Centricity PACS-IW 3.7.3.7, 3.7.3.8, and possibly other versions, has a password of (1) shared for the shared user and (2) scan for the scan user, which has unspecified impact and attack vectors. | 10.0 |
| 2015-08-04 | CVE-2011-5323 | Credentials Management vulnerability in Gehealthcare Centricity Pacs-Iw 3.7.3.7/3.7.3.8 GE Healthcare Centricity PACS-IW 3.7.3.7, 3.7.3.8, and possibly other versions has a password of A11enda1e for the sa SQL server user, which has unspecified impact and attack vectors. | 10.0 |
| 2015-08-04 | CVE-2011-5322 | Credentials Management vulnerability in Gehealthcare Centricity Analytics Server 1.1 GE Healthcare Centricity Analytics Server 1.1 has a default password of (1) V0yag3r for the SQL Server sa user, (2) G3car3s for the analyst user, (3) G3car3s for the ccg user, (4) V0yag3r for the viewer user, and (5) geservice for the geservice user in the Webmin interface, which has unspecified impact and attack vectors. | 10.0 |
| 2015-08-04 | CVE-2010-5310 | Credentials Management vulnerability in Gehealthcare Revolution Xq/I The Acquisition Workstation for the GE Healthcare Revolution XQ/i has a password of adw3.1 for the sdc user, which has unspecified impact and attack vectors. | 10.0 |
| 2015-08-04 | CVE-2010-5309 | Credentials Management vulnerability in Gehealthcare Cadstream Server Firmware GE Healthcare CADStream Server has a default password of confirma for the admin user, which has unspecified impact and attack vectors. | 10.0 |
| 2015-08-04 | CVE-2010-5308 | Credentials Management vulnerability in Gehealthcare Optima Mr360 Firmware GE Healthcare Optima MR360 does not require authentication for the HIPAA emergency login procedure, which allows physically proximate users to gain access via an arbitrary username in the Emergency Login screen. | 10.0 |
| 2015-08-04 | CVE-2010-5307 | Credentials Management vulnerability in Gehealthcare Optima Mr360 Firmware The HIPAA configuration interface in GE Healthcare Optima MR360 has a password of (1) operator for the root account, (2) adw2.0 for the admin account, and (3) adw2.0 for the sdc account, which has unspecified impact and attack vectors. | 10.0 |
| 2015-08-04 | CVE-2010-5306 | Credentials Management vulnerability in Gehealthcare products GE Healthcare Optima CT680, CT540, CT640, and CT520 has a default password of #bigguy for the root user, which has unspecified impact and attack vectors. | 10.0 |