CVE-2020-25179
CRITICALGehealthcare 3.0t Signa Hdxt Firmware - Information Disclosure
Title source: ruleDescription
GE Healthcare Imaging and Ultrasound Products may allow specific credentials to be exposed during transport over the network.
References (1)
Core 1
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://us-cert.cisa.gov/ics/advisories/icsma-20-343-01
Scores
CVSS v3
9.8
EPSS
0.0135
EPSS Percentile
67.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-200
CWE-497
Status
published
Products (50)
gehealthcare/1.5t_brivo_mr355_firmware
gehealthcare/3.0t_signa_hd_16_firmware
gehealthcare/3.0t_signa_hd_23_firmware
gehealthcare/3.0t_signa_hdxt_firmware
gehealthcare/amx_700_firmware
gehealthcare/brightspeed_edge_firmware
gehealthcare/brightspeed_edge_select_firmware
gehealthcare/brightspeed_elite_firmware
gehealthcare/brightspeed_elite_select_firmware
gehealthcare/brivo_ct385_firmware
... and 40 more
Published
Dec 14, 2020
Tracked Since
Feb 18, 2026