Vulnerability Details : CVE-2011-5322
GE Healthcare Centricity Analytics Server 1.1 has a default password of (1) V0yag3r for the SQL Server sa user, (2) G3car3s for the analyst user, (3) G3car3s for the ccg user, (4) V0yag3r for the viewer user, and (5) geservice for the geservice user in the Webmin interface, which has unspecified impact and attack vectors.
Products affected by CVE-2011-5322
- cpe:2.3:a:gehealthcare:centricity_analytics_server:1.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-5322
0.42%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 59 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-5322
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2011-5322
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-5322
-
https://ics-cert.us-cert.gov/advisories/ICSMA-18-037-02
GE Medical Devices Vulnerability | CISA
-
http://www.forbes.com/sites/thomasbrewster/2015/07/10/vulnerable-breasts/
Vulnerable Breasts And Brains? Cancer Scan Tech Has Terrible Password Security
-
https://twitter.com/digitalbond/status/619250429751222277
Dale Peterson on Twitter: "Funny slide with GE default password word cloud. Go bigguy! #Shakacon http://t.co/t1dcIziQza"
-
http://apps.gehealthcare.com/servlet/ClientServlet/CA11_IN_2059103-001r4.pdf?REQ=RAA&DIRECTION=2059103-001&FILENAME=CA11_IN_2059103-001r4.pdf&FILEREV=4&DOCREV_ORG=4
Support Documentation Library - Support | GE Healthcare
Jump to