Browse all 13 CVE security advisories affecting GE HealthCare. AI-powered Chinese analysis, POCs, and references for each vulnerability.
GE Healthcare develops medical imaging and monitoring systems used in clinical settings worldwide. Historically, their products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from web interfaces and network services. While no major public security incidents have been widely reported, the 13 CVEs on record highlight ongoing security challenges in medical devices. Their systems typically require robust network segmentation and regular patching due to the critical nature of healthcare environments. Security researchers have noted that legacy systems may present higher risks, emphasizing the need for continuous vulnerability management in life-critical infrastructure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-27110 | Elevation of privilege vulnerability in GE HealthCare EchoPAC products — EchoPAC Software OnlyCWE-250 | 8.4 | High | 2024-05-14 |
| CVE-2024-27109 | Insufficiently protected credentials in GE HealthCare EchoPAC products — EchoPAC Software OnlyCWE-522 | 7.6 | High | 2024-05-14 |
| CVE-2024-27108 | Non privileged access to critical file vulnerability in GE HealthCare EchoPAC products — EchoPAC Software OnlyCWE-732 | 6.8 | Medium | 2024-05-14 |
| CVE-2024-27107 | Weak account password in GE HealthCare EchoPAC products — EchoPAC Software OnlyCWE-798 | 9.6 | Critical | 2024-05-14 |
| CVE-2024-27106 | Vulnerable data in transit in GE HealthCare EchoPAC products — EchoPAC Software OnlyCWE-311 | 5.7 | Medium | 2024-05-14 |
This page lists every published CVE security advisory associated with GE HealthCare. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.