CVE-2010-5307

Published: Aug 4, 2015Modified: May 6, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

The HIPAA configuration interface in GE Healthcare Optima MR360 has a password of (1) operator for the root account, (2) adw2.0 for the admin account, and (3) adw2.0 for the sdc account, which has unspecified impact and attack vectors. NOTE: it is not clear whether these passwords are default, hardcoded, or dependent on another system or product that requires a fixed value.

Affected (1)

Products: Gehealthcare: Optima Mr360 Firmware

1 product

Optima Mr360 Firmware

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Gehealthcare Optima Mr360 Firmware	All versions

Related CWEs

References (8)

http://apps.gehealthcare.com/servlet/ClientServlet/MR360+operator+manual+paper.pdf?REQ=RAA&DIRECTION=5339461-1EN&FILENAME=MR360%2Boperator%2Bmanual%2Bpaper.pdf&FILEREV=4&DOCREV_ORG=4

Source: cve@mitre.org

http://www.forbes.com/sites/thomasbrewster/2015/07/10/vulnerable-breasts/

Source: cve@mitre.org

https://ics-cert.us-cert.gov/advisories/ICSMA-18-037-02

Source: cve@mitre.org

https://twitter.com/digitalbond/status/619250429751222277

Source: cve@mitre.org

http://apps.gehealthcare.com/servlet/ClientServlet/MR360+operator+manual+paper.pdf?REQ=RAA&DIRECTION=5339461-1EN&FILENAME=MR360%2Boperator%2Bmanual%2Bpaper.pdf&FILEREV=4&DOCREV_ORG=4

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.forbes.com/sites/thomasbrewster/2015/07/10/vulnerable-breasts/

Source: af854a3a-2127-422b-91ae-364da2661108

https://ics-cert.us-cert.gov/advisories/ICSMA-18-037-02

Source: af854a3a-2127-422b-91ae-364da2661108

https://twitter.com/digitalbond/status/619250429751222277

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.