Description:

GE has released security alert for multiple vulnerabilities in the following products:

• ApexPro Telemetry Server
  • Versions 4.2 and prior
• CARESCAPE Telemetry Server
  • Versions 4.2 and prior
• Clinical Information Center (CIC)
  • Versions 4.X and 5.X
• CARESCAPE Telemetry Server
  • Version 4.3
• CARESCAPE Central Station (CSCS)
  • Versions 1.X
• CARESCAPE Central Station (CSCS)
  • Versions 2.X
• B450
  • Version 2.X
• B650
  • Version 1.X and Version 2.X
• B850
  • Version 1.X and Version 2.X

Threats:

Attacker could exploit these vulnerabilities by doing the following:

• Execute arbitrary code remotely
• Upload arbitrary files on the system
• Obtain remote keyboard input access
• Unprotected Storage of Credentials

Best practice and Recommendations:

The GE team encourages users to apply the following network management best practices:

• The MC and IX Networks are isolated and if connectivity is needed outside the MC and/or IX Networks, a Router/Firewall is used to allow only the necessary data flows and block all other data flows.
• The following ports should always be blocked for traffic initiated from outside the MC and IX Networks: TCP Port 22 for SSH and TCP and UDP Ports 137, 138, 139, and 445 for NetBIOS and SMB as well as TCP Ports 10000, 5225, 5800, 5900, and 10001.
• Restricted physical access to Central Stations, Telemetry Servers, and the MC and IX networks.
• Default passwords for Webmin should be changed as recommended.
• Password management best practices are followed.

For more information, users can access the following GE’s security website:

https://logon.gehealthcare.com/idp/login?app=0spa0000000blKl&RelayState=%2Fen%2Ftermsandconditions