CVE-2024-2710914.05.2024, 17:15Insufficiently protected credentials in GE HealthCare EchoPAC productsEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST7.6 HIGHPHYSICALLOWNONECVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HGEHCCNA7.6 HIGHPHYSICALLOWNONECVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HCISA-ADPADP------CVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 24%Common Weakness EnumerationCWE-522 - Insufficiently Protected CredentialsThe product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.Referenceshttps://securityupdate.gehealthcare.com/https://securityupdate.gehealthcare.com/