Vulnerability-Lookup

BDU:2024-04476

Vulnerability from fstec - Published: 13.02.2024

Title

Уязвимость систем ультразвуковой диагностики GE HealthCare, связанная с неверным назначением разрешений для критического ресурса, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации и повысить свои привилегии

Description

Уязвимость систем ультразвуковой диагностики GE HealthCare связана с неверным назначением разрешений для критического ресурса. Эксплуатация уязвимости может позволить нарушителю получить несанкционированный доступ к защищаемой информации и повысить свои привилегии

Severity ?


                    
                      AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Vendor

GE Healthcare

Software Name

Invenia ABUS, Vivid E90, Vivid E95, Vivid S60N, Vivid E80, Vivid S70N, Vivid T8, Vivid iQ, Vivid T9, LOGIQ Fortis, LOGIQ E10s, LOGIQ E10, Venue Go R2, Venue R1, Venue R2, Versana Essential R2, Venue Go R3, Venue R3, Venue Go R4, Venue R4, Venue Fit R4, Venue Fit R3, LOGIQ e R9, LOGIQ e R8, LOGIQ e R7 (9.2.x), LOGIQ e R7 (9.1.x), LOGIQ He, Voluson Expert 22, Voluson Expert 18, Voluson Expert 16 BT24, Voluson Expert 16, Voluson SWIFT+, Voluson SWIFT, Voluson Expert 22 BT24, Voluson Expert 18 BT24, Voluson SWIFT BT24, Voluson SWIFT+ BT24

Software Version

- (Invenia ABUS), - (Vivid E90), - (Vivid E95), - (Vivid S60N), - (Vivid E80), - (Vivid S70N), - (Vivid T8), - (Vivid iQ), - (Vivid T9), - (LOGIQ Fortis), - (LOGIQ E10s), - (LOGIQ E10), - (Venue Go R2), - (Venue R1), - (Venue R2), - (Versana Essential R2), - (Venue Go R3), - (Venue R3), - (Venue Go R4), - (Venue R4), - (Venue Fit R4), - (Venue Fit R3), - (LOGIQ e R9), - (LOGIQ e R8), - (LOGIQ e R7 (9.2.x)), - (LOGIQ e R7 (9.1.x)), - (LOGIQ He), - (Voluson Expert 22), - (Voluson Expert 18), - (Voluson Expert 16 BT24), - (Voluson Expert 16), - (Voluson SWIFT+), - (Voluson SWIFT), - (Voluson Expert 22 BT24), - (Voluson Expert 18 BT24), - (Voluson SWIFT BT24), - (Voluson SWIFT+ BT24)

Possible Mitigations

Компенсирующие меры: - ограничение возможности подключения к устройствам через SMB по 2638 TCP-порту (порт сервера базы данных SQL Anywhere); - использование средств межсетевого экранирования и средств обнаружения и предотвращения вторжений (IDS/IPS) для отслеживания подключений к устройству; - ограничение доступа к устройству из внешних сетей (Интернет); - использование виртуальных частных сетей для организации удаленного доступа (VPN); - сегментирование сети для ограничения возможности удалённого доступа к медицинскому оборудованию. Использование рекомендаций производителя: https://www.gehealthcare.com/services/lifecycle-management/product-security-portal/security

Reference

https://www.gehealthcare.com/services/lifecycle-management/product-security-portal/security https://www.nozominetworks.com/blog/ge-healthcare-vivid-ultrasound-vulnerabilities https://vuldb.com/?id.264232 https://www.cisa.gov/news-events/ics-medical-advisories/icsma-20-049-02 https://www.gehealthcare.com/products/ultrasound https://www.gehealthcare.com/products/ultrasound/vivid https://www.gehealthcare.com/products/ultrasound/voluson https://www.gehealthcare.com/products/ultrasound/logiq https://www.gehealthcare.com/products/ultrasound/versana

CWE

CWE-286, CWE-732

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
  "CVSS 3.0": "AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "GE Healthcare",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Invenia ABUS), - (Vivid E90), - (Vivid E95), - (Vivid S60N), - (Vivid E80), - (Vivid S70N), - (Vivid T8), - (Vivid iQ), - (Vivid T9), - (LOGIQ Fortis), - (LOGIQ E10s), - (LOGIQ E10), - (Venue Go R2), - (Venue R1), - (Venue R2), - (Versana Essential R2), - (Venue Go R3), - (Venue R3), - (Venue Go R4), - (Venue R4), - (Venue Fit R4), - (Venue Fit R3), - (LOGIQ e R9), - (LOGIQ e R8), - (LOGIQ e R7 (9.2.x)), - (LOGIQ e R7 (9.1.x)), - (LOGIQ He), - (Voluson Expert 22), - (Voluson Expert 18), - (Voluson Expert 16 BT24), - (Voluson Expert 16), - (Voluson SWIFT+), - (Voluson SWIFT), - (Voluson Expert 22 BT24), - (Voluson Expert 18 BT24), - (Voluson SWIFT BT24), - (Voluson SWIFT+ BT24)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n- \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u043c \u0447\u0435\u0440\u0435\u0437 SMB \u043f\u043e 2638 TCP-\u043f\u043e\u0440\u0442\u0443 (\u043f\u043e\u0440\u0442 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0431\u0430\u0437\u044b \u0434\u0430\u043d\u043d\u044b\u0445 SQL Anywhere);\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u044d\u043a\u0440\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0438 \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044f \u0432\u0442\u043e\u0440\u0436\u0435\u043d\u0438\u0439 (IDS/IPS) \u0434\u043b\u044f \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u043d\u0438\u044f \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0439 \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0443;\n- \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0443 \u0438\u0437 \u0432\u043d\u0435\u0448\u043d\u0438\u0445 \u0441\u0435\u0442\u0435\u0439 (\u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442);\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0445 \u0447\u0430\u0441\u0442\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0439 \u0434\u043b\u044f \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (VPN);\n- \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0435\u0442\u0438 \u0434\u043b\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u043c\u0435\u0434\u0438\u0446\u0438\u043d\u0441\u043a\u043e\u043c\u0443 \u043e\u0431\u043e\u0440\u0443\u0434\u043e\u0432\u0430\u043d\u0438\u044e.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://www.gehealthcare.com/services/lifecycle-management/product-security-portal/security",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "13.02.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "11.06.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "11.06.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-04476",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-1486",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0443\u0435\u0442",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Invenia ABUS, Vivid E90, Vivid E95, Vivid S60N, Vivid E80, Vivid S70N, Vivid T8, Vivid iQ, Vivid T9, LOGIQ Fortis, LOGIQ E10s, LOGIQ E10, Venue Go R2, Venue R1, Venue R2, Versana Essential R2, Venue Go R3, Venue R3, Venue Go R4, Venue R4, Venue Fit R4, Venue Fit R3, LOGIQ e R9, LOGIQ e R8, LOGIQ e R7 (9.2.x), LOGIQ e R7 (9.1.x), LOGIQ He, Voluson Expert 22, Voluson Expert 18, Voluson Expert 16 BT24, Voluson Expert 16, Voluson SWIFT+, Voluson SWIFT, Voluson Expert 22 BT24, Voluson Expert 18 BT24, Voluson SWIFT BT24, Voluson SWIFT+ BT24",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0438\u0441\u0442\u0435\u043c \u0443\u043b\u044c\u0442\u0440\u0430\u0437\u0432\u0443\u043a\u043e\u0432\u043e\u0439 \u0434\u0438\u0430\u0433\u043d\u043e\u0441\u0442\u0438\u043a\u0438 GE HealthCare, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0432\u0435\u0440\u043d\u044b\u043c \u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435\u043c \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u0439 \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u0440\u0435\u0441\u0443\u0440\u0441\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e\u0435 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f\u043c\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f (CWE-286), \u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e\u0435 \u043f\u0440\u0438\u0441\u0432\u043e\u0435\u043d\u0438\u0435 \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u0439 \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u043d\u043e\u0433\u043e \u0440\u0435\u0441\u0443\u0440\u0441\u0430 (CWE-732)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0438\u0441\u0442\u0435\u043c \u0443\u043b\u044c\u0442\u0440\u0430\u0437\u0432\u0443\u043a\u043e\u0432\u043e\u0439 \u0434\u0438\u0430\u0433\u043d\u043e\u0441\u0442\u0438\u043a\u0438 GE HealthCare \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0432\u0435\u0440\u043d\u044b\u043c \u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u0438\u0435\u043c \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u0438\u0439 \u0434\u043b\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u0440\u0435\u0441\u0443\u0440\u0441\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.gehealthcare.com/services/lifecycle-management/product-security-portal/security\nhttps://www.nozominetworks.com/blog/ge-healthcare-vivid-ultrasound-vulnerabilities\nhttps://vuldb.com/?id.264232\nhttps://www.cisa.gov/news-events/ics-medical-advisories/icsma-20-049-02\nhttps://www.gehealthcare.com/products/ultrasound\nhttps://www.gehealthcare.com/products/ultrasound/vivid\nhttps://www.gehealthcare.com/products/ultrasound/voluson\nhttps://www.gehealthcare.com/products/ultrasound/logiq\nhttps://www.gehealthcare.com/products/ultrasound/versana",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-286, CWE-732",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,9)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,4)"
}

CVE-2024-1486 (GCVE-0-2024-1486)

Vulnerability from cvelistv5 – Published: 2024-05-14 15:10 – Updated: 2024-08-16 18:15

Title

Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices

Summary

Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices

Severity ?

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-732 - Incorrect Permission Assignment for Critical Resource

Assigner

GEHC

References

URL

Tags

https://securityupdate.gehealthcare.com/

Impacted products

Vendor

Product

Version

GE HealthCare

Venue

Affected: R1
Affected: R2
Affected: R3 , ≤ R3.3 (custom)
Affected: R4 , ≤ R4.2 (custom)

GE HealthCare	Venue Go	Affected: R2 Affected: R3 , ≤ R3.3 (custom) Affected: R4 , ≤ R4.2 (custom)
GE HealthCare	Venue Fit	Affected: R3 , ≤ R3.3 (custom) Affected: R4 , ≤ R4.2 (custom)
GE HealthCare	LOGIQ e	Affected: R7 , ≤ R9.1.4 (custom) Affected: R8 , ≤ R10.1.3 (custom) Affected: R9 , ≤ R11.0.2 (custom)
GE HealthCare	LOGIQ He	Affected: 0 , ≤ R9.3.1 (custom)
GE HealthCare	Vivid E	Affected: E95 , < 206 (custom) Affected: E90 , < 206 (custom) Affected: E80 , < 206 (custom) Affected: E9 113.2 , ≤ 113.2 (custom)
GE HealthCare	Vivid S	Affected: 70N , < 206 (custom) Affected: 60N , < 206 (custom)
GE HealthCare	Vivid T	Affected: T8 , < 206 (custom) Affected: T9 , < 206 (custom)
GE HealthCare	Vivid iq	Affected: 0 , < 206 (custom)
GE HealthCare	Invenia ABUS	Affected: 1.2.3
GE HealthCare	Invenia ABUS 2.0	Affected: 0 , < 2.2.9 (custom)

Credits

Andrea Palanca and Gabriele Quagliarella of Nozomi Networks

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T18:40:21.121Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://securityupdate.gehealthcare.com/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:venue_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "venue_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "status": "affected",
                "version": "R1"
              },
              {
                "status": "affected",
                "version": "R2"
              },
              {
                "lessThanOrEqual": "R3.3",
                "status": "affected",
                "version": "R3",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "R4.2",
                "status": "affected",
                "version": "R4",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:venue_go_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "venue_go_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "status": "affected",
                "version": "R2"
              },
              {
                "lessThanOrEqual": "R3.3",
                "status": "affected",
                "version": "R3",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "R4.2",
                "status": "affected",
                "version": "R4",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:venue_fit_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "venue_fit_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThanOrEqual": "R3.3",
                "status": "affected",
                "version": "R3",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "R4.2",
                "status": "affected",
                "version": "R4",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:logiq_e_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "logiq_e_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThanOrEqual": "R9.1.4",
                "status": "affected",
                "version": "R7",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "R10.1.3",
                "status": "affected",
                "version": "R8",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "R11.0.2",
                "status": "affected",
                "version": "R9",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:logiq_he_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "logiq_he_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThanOrEqual": "R9.3.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:vivid_e_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "vivid_e_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThan": "206",
                "status": "affected",
                "version": "E95",
                "versionType": "custom"
              },
              {
                "lessThan": "206",
                "status": "affected",
                "version": "E90",
                "versionType": "custom"
              },
              {
                "lessThan": "206",
                "status": "affected",
                "version": "E80",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "113.2",
                "status": "affected",
                "version": "E9 113.2",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:vivid_s_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "vivid_s_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThan": "206",
                "status": "affected",
                "version": "70N",
                "versionType": "custom"
              },
              {
                "lessThan": "206",
                "status": "affected",
                "version": "60N",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:vivid_t_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "vivid_t_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThan": "206",
                "status": "affected",
                "version": "T8",
                "versionType": "custom"
              },
              {
                "lessThan": "206",
                "status": "affected",
                "version": "T9",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:vivid_iq_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "vivid_iq_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThan": "206",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:invenia_abus_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "invenia_abus_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "status": "affected",
                "version": "1.2.3"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:gehealthcare:invenia_abus_2.0_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "invenia_abus_2.0_firmware",
            "vendor": "gehealthcare",
            "versions": [
              {
                "lessThan": "2.2.9",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-1486",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-12T14:08:59.014421Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-16T18:15:02.675Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Venue",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "status": "affected",
              "version": "R1"
            },
            {
              "status": "affected",
              "version": "R2"
            },
            {
              "lessThanOrEqual": "R3.3",
              "status": "affected",
              "version": "R3",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "R4.2",
              "status": "affected",
              "version": "R4",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Venue Go",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "status": "affected",
              "version": "R2"
            },
            {
              "lessThanOrEqual": "R3.3",
              "status": "affected",
              "version": "R3",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "R4.2",
              "status": "affected",
              "version": "R4",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Venue Fit",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThanOrEqual": "R3.3",
              "status": "affected",
              "version": "R3",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "R4.2",
              "status": "affected",
              "version": "R4",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "LOGIQ e",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThanOrEqual": "R9.1.4",
              "status": "affected",
              "version": "R7",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "R10.1.3",
              "status": "affected",
              "version": "R8",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "R11.0.2",
              "status": "affected",
              "version": "R9",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "LOGIQ He",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThanOrEqual": "R9.3.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vivid E",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThan": "206",
              "status": "affected",
              "version": "E95",
              "versionType": "custom"
            },
            {
              "lessThan": "206",
              "status": "affected",
              "version": "E90",
              "versionType": "custom"
            },
            {
              "lessThan": "206",
              "status": "affected",
              "version": "E80",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "113.2",
              "status": "affected",
              "version": "E9 113.2",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vivid S",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThan": "206",
              "status": "affected",
              "version": "70N",
              "versionType": "custom"
            },
            {
              "lessThan": "206",
              "status": "affected",
              "version": "60N",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vivid T",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThan": "206",
              "status": "affected",
              "version": "T8",
              "versionType": "custom"
            },
            {
              "lessThan": "206",
              "status": "affected",
              "version": "T9",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vivid iq",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThan": "206",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Invenia ABUS",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "status": "affected",
              "version": "1.2.3"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Invenia ABUS 2.0",
          "vendor": "GE HealthCare",
          "versions": [
            {
              "lessThan": "2.2.9",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Andrea Palanca and Gabriele Quagliarella of Nozomi Networks"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices"
            }
          ],
          "value": "Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices"
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-1",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-732",
              "description": "CWE-732 Incorrect Permission Assignment for Critical Resource",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-14T15:10:22.262Z",
        "orgId": "171caf72-b841-4e04-a68e-93493aff2b94",
        "shortName": "GEHC"
      },
      "references": [
        {
          "url": "https://securityupdate.gehealthcare.com/"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "171caf72-b841-4e04-a68e-93493aff2b94",
    "assignerShortName": "GEHC",
    "cveId": "CVE-2024-1486",
    "datePublished": "2024-05-14T15:10:22.262Z",
    "dateReserved": "2024-02-13T22:34:57.386Z",
    "dateUpdated": "2024-08-16T18:15:02.675Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2024-04476

CVE-2024-1486 (GCVE-0-2024-1486)

Tags

Sightings

Nomenclature