CVE-2017-14008

Summary

GE Centricity PACS RA1000, diagnostic image analysis, all current versions are affected these devices use default or hard-coded credentials. Successful exploitation of this vulnerability may allow a remote attacker to bypass authentication and gain access to the affected devices.

Affected Software

VendorProductVersion RangeStatus
GE HealthcareGE Centricity PACS RA1000Allaffected

Weaknesses

  • CWE-287: IMPROPER AUTHENTICATION CWE-287 The affected devices use default or hard-coded credentials.

ADP Enrichment

CVE Program Container

Additional References

References