Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

GE Healthcare — Vulnerabilities & Security Advisories 13

Browse all 13 CVE security advisories affecting GE Healthcare. AI-powered Chinese analysis, POCs, and references for each vulnerability.

GE Healthcare develops medical imaging and monitoring systems used in clinical settings worldwide. Historically, their products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from web interfaces and network services. While no major public security incidents have been widely reported, the 13 CVEs on record highlight ongoing security challenges in medical devices. Their systems typically require robust network segmentation and regular patching due to the critical nature of healthcare environments. Security researchers have noted that legacy systems may present higher risks, emphasizing the need for continuous vulnerability management in life-critical infrastructure.

Top products by GE Healthcare: EchoPAC Software Only Venue GE Infinia GE GEMNet License server aka. (EchoServer) GE Xeleris GE Centricity PACS RA1000
CVE IDTitleCVSSSeverityPublished
CVE-2024-27110 Elevation of privilege vulnerability in GE HealthCare EchoPAC products — EchoPAC Software OnlyCWE-250 8.4 High2024-05-14
CVE-2024-27109 Insufficiently protected credentials in GE HealthCare EchoPAC products — EchoPAC Software OnlyCWE-522 7.6 High2024-05-14
CVE-2024-27108 Non privileged access to critical file vulnerability in GE HealthCare EchoPAC products — EchoPAC Software OnlyCWE-732 6.8 Medium2024-05-14
CVE-2024-27107 Weak account password in GE HealthCare EchoPAC products — EchoPAC Software OnlyCWE-798 9.6 Critical2024-05-14
CVE-2024-27106 Vulnerable data in transit in GE HealthCare EchoPAC products — EchoPAC Software OnlyCWE-311 5.7 Medium2024-05-14
CVE-2024-1630 Path traversal vulnerability in “getAllFolderContents” function of Common Service Desktop, a GE HealthCare ultrasound device component — VenueCWE-22 7.7 High2024-05-14
CVE-2024-1629 Path traversal vulnerability in “deleteFiles” function of Common Service Desktop, a GE HealthCare ultrasound device component — VenueCWE-22 6.2 Medium2024-05-14
CVE-2024-1628 OS command injection vulnerabilities in GE HealthCare ultrasound devices — VenueCWE-78 8.4 High2024-05-14
CVE-2024-1486 Elevation of privileges via misconfigured access control list in GE HealthCare ultrasound devices — VenueCWE-732 7.4 High2024-05-14
CVE-2017-14002 GE Infinia/Infinia with Hawkeye 4 安全漏洞 — GE InfiniaCWE-287 9.8 -2018-03-20
CVE-2017-14004 GE 安全漏洞 — GE GEMNet License server aka. (EchoServer)CWE-287 9.8 -2018-03-20
CVE-2017-14006 GE Xeleris 安全漏洞 — GE XelerisCWE-287 9.8 -2018-03-20
CVE-2017-14008 GE Centricity PACS RA1000 授权问题漏洞 — GE Centricity PACS RA1000CWE-287 9.8 -2018-03-20

This page lists every published CVE security advisory associated with GE Healthcare. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.