CVE-2024-2710614.05.2024, 17:15Vulnerable data in transit in GE HealthCare EchoPAC productsEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST5.7 MEDIUMADJACENT_NETWORKLOWNONECVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NGEHCCNA5.7 MEDIUMADJACENT_NETWORKLOWNONECVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NCISA-ADPADP------CVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 17%Common Weakness EnumerationCWE-311 - Missing Encryption of Sensitive DataThe software does not encrypt sensitive or critical information before storage or transmission.Referenceshttps://securityupdate.gehealthcare.com/https://securityupdate.gehealthcare.com/