CVE-2020-6961 : In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server

In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X, a vulnerability exists in the affected products that could allow an attacker to obtain access to the SSH private key in configuration files.

Published 2020-01-24 17:15:13

Updated 2020-03-17 17:20:16

Source ICS-CERT

View at NVD, CVE.org

Products affected by CVE-2020-6961

Gehealthcare » Apexpro Telemetry Server Firmware
Versions up to, including, (<=) 4.2
cpe:2.3:o:gehealthcare:apexpro_telemetry_server_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Gehealthcare » Apexpro Telemetry Server » Version: N/A
Gehealthcare » Carescape Central Station Mai700 Firmware » Version: 1.0
cpe:2.3:o:gehealthcare:carescape_central_station_mai700_firmware:1.0:*:*:*:*:*:*:*
Matching versions
When used together with: Gehealthcare » Carescape Central Station Mai700 » Version: N/A
Gehealthcare » Carescape Central Station Mas700 Firmware » Version: 1.0
cpe:2.3:o:gehealthcare:carescape_central_station_mas700_firmware:1.0:*:*:*:*:*:*:*
Matching versions
When used together with: Gehealthcare » Carescape Central Station Mas700 » Version: N/A
Gehealthcare » Clinical Information Center Mp100d Firmware » Version: 4.0
cpe:2.3:o:gehealthcare:clinical_information_center_mp100d_firmware:4.0:*:*:*:*:*:*:*
Matching versions
When used together with: Gehealthcare » Clinical Information Center Mp100d » Version: N/A
Gehealthcare » Clinical Information Center Mp100d Firmware » Version: 5.0
cpe:2.3:o:gehealthcare:clinical_information_center_mp100d_firmware:5.0:*:*:*:*:*:*:*
Matching versions
When used together with: Gehealthcare » Clinical Information Center Mp100d » Version: N/A
Gehealthcare » Clinical Information Center Mp100r Firmware » Version: 4.0
cpe:2.3:o:gehealthcare:clinical_information_center_mp100r_firmware:4.0:*:*:*:*:*:*:*
Matching versions
When used together with: Gehealthcare » Clinical Information Center Mp100r » Version: N/A
Gehealthcare » Clinical Information Center Mp100r Firmware » Version: 5.0
cpe:2.3:o:gehealthcare:clinical_information_center_mp100r_firmware:5.0:*:*:*:*:*:*:*
Matching versions
When used together with: Gehealthcare » Clinical Information Center Mp100r » Version: N/A
Gehealthcare » Carescape Telemetry Server Mp100r Firmware
Versions up to, including, (<=) 4.2
cpe:2.3:o:gehealthcare:carescape_telemetry_server_mp100r_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Gehealthcare » Carescape Telemetry Server Mp100r » Version: N/A
Gehealthcare » Carescape Telemetry Server Mp100r Firmware » Version: 4.3
cpe:2.3:o:gehealthcare:carescape_telemetry_server_mp100r_firmware:4.3:*:*:*:*:*:*:*
Matching versions
When used together with: Gehealthcare » Carescape Telemetry Server Mp100r » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2020-6961

EPSS FAQ

0.19%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 41 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-6961

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
10.0	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H	3.9	6.0	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Changed Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2020-6961

CWE-256 Plaintext Storage of a Password

Storing a password in plaintext may result in a system compromise.

Assigned by: ics-cert@hq.dhs.gov (Secondary)
CWE-522 Insufficiently Protected Credentials

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2020-6961

https://www.us-cert.gov/ics/advisories/icsma-20-023-01

GE CARESCAPE, ApexPro, and Clinical Information Center systems | CISA
Third Party Advisory;US Government Resource

CVEs referencing this url
https://www3.gehealthcare.com/~/media/downloads/us/support/site-planning/site-readiness/gehc-gateway_project_implementation_guide_pdf.pdf

Product

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2020-6961

Products affected by CVE-2020-6961

Exploit prediction scoring system (EPSS) score for CVE-2020-6961

CVSS scores for CVE-2020-6961

CWE ids for CVE-2020-6961

References for CVE-2020-6961