CVE-2020-25175

Q: What is the severity of CVE-2020-25175?

CVE-2020-25175 has a CVSS score of 9.8 (CRITICAL). CVE-2020-25175 exposes specific credentials during network transmission in GE Healthcare imaging and ultrasound products, allowing attackers to intercept authentication data. This affects healthcare organizations using vulnerable GE Healthcare medical imaging systems.

9.8 CRITICAL

📋 TL;DR

CVE-2020-25175 exposes specific credentials during network transmission in GE Healthcare imaging and ultrasound products, allowing attackers to intercept authentication data. This affects healthcare organizations using vulnerable GE Healthcare medical imaging systems.

💻 Affected Systems

Products:

GE Healthcare Imaging and Ultrasound Products

Versions: Multiple versions prior to patches

Operating Systems: Various embedded/medical device OS

Default Config Vulnerable: ⚠️ Yes

Notes: Affects specific GE Healthcare medical imaging devices; exact product list in vendor advisory.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers intercept administrative credentials, gain full control of medical imaging systems, potentially disrupting critical healthcare operations or manipulating patient data.

🟠

Likely Case

Attackers capture credentials to access medical imaging systems, view sensitive patient data, or disrupt normal operations.

🟢

If Mitigated

With proper network segmentation and monitoring, impact limited to isolated systems with minimal patient data exposure.

🌐 Internet-Facing: HIGH - If systems are internet-accessible, credentials can be intercepted by remote attackers.

🏢 Internal Only: MEDIUM - Internal attackers or compromised internal systems could intercept credentials on local networks.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: LOW - Network interception of credentials requires no authentication.

Exploitation requires network access to intercept traffic; no public exploit code known.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Vendor-specific updates per product

Vendor Advisory: https://us-cert.cisa.gov/ics/advisories/icsma-20-343-01

Restart Required: Yes

Instructions:

1. Review GE Healthcare advisory for affected products. 2. Contact GE Healthcare for specific patches. 3. Apply patches following vendor instructions. 4. Restart affected systems.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate affected systems on separate VLANs with strict access controls.

Encrypted Network Traffic

all

Implement VPN or encrypted tunnels for all traffic to/from affected systems.

🧯 If You Can't Patch

Segment affected systems from untrusted networks and implement strict firewall rules.
Monitor network traffic for credential interception attempts and implement intrusion detection.

🔍 How to Verify

Check if Vulnerable:

Check system versions against GE Healthcare advisory; monitor network traffic for unencrypted credential transmission.

Check Version:

Check device firmware/software version through GE Healthcare device interface or management console.

Verify Fix Applied:

Verify patch installation via vendor documentation; test that credentials are no longer transmitted in clear text.

📡 Detection & Monitoring

Log Indicators:

Failed authentication attempts from unexpected sources
Unusual access patterns to imaging systems

Network Indicators:

Unencrypted authentication traffic to/from GE Healthcare systems
Suspicious network sniffing activity

SIEM Query:

source_ip IN (GE_Healthcare_IPs) AND (protocol="http" OR protocol="ftp") AND (payload_contains "password" OR payload_contains "login")

📊 Metadata

CVE ID: CVE-2020-25175

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-523

Published: December 14, 2020

Last Updated: November 21, 2024

🔗 References

https://us-cert.cisa.gov/ics/advisories/icsma-20-343-01 Third Party Advisory,US Government Resource
https://us-cert.cisa.gov/ics/advisories/icsma-20-343-01 Third Party Advisory,US Government Resource

📋 TL;DR

💻 Affected Systems

📦 What is this software?

1.5t Brivo Mr355 Firmware by Gehealthcare

3.0t Signa Hd 16 Firmware by Gehealthcare

3.0t Signa Hd 23 Firmware by Gehealthcare

3.0t Signa Hdxt Firmware by Gehealthcare

Amx 700 Firmware by Gehealthcare

Brightspeed Edge Firmware by Gehealthcare

Brightspeed Edge Select Firmware by Gehealthcare

Brightspeed Elite Firmware by Gehealthcare

Brightspeed Elite Select Firmware by Gehealthcare

Brivo Ct385 Firmware by Gehealthcare

Brivo Definiu Firmware by Gehealthcare

Brivo Nm 615 Firmware by Gehealthcare

Brivo Xr118 Firmware by Gehealthcare

Brivo Xr383 Firmware by Gehealthcare

Brivo Xr515 Firmware by Gehealthcare

Brivo Xr575 Firmware by Gehealthcare

Definium 5000 Firmware by Gehealthcare

Definium 6000 Firmware by Gehealthcare

Definium 8000 Firmware by Gehealthcare

Discovery Ct590rt Firmware by Gehealthcare

Discovery Ct750hd Firmware by Gehealthcare

Discovery Iq Firmware by Gehealthcare

Discovery Mi Mi Dr Firmware by Gehealthcare

Discovery Nm 630 Firmware by Gehealthcare

Discovery Nm 750b Firmware by Gehealthcare

Discovery Nm D530c Firmware by Gehealthcare

Discovery Nm\/ct 670 Firmware by Gehealthcare

Discovery Nm\/ct 860 Firmware by Gehealthcare

Discovery Nm\/ct 870 Firmware by Gehealthcare

Discovery Nm\/ct D570c Firmware by Gehealthcare

Discovery Nm\/ct850 Firmware by Gehealthcare

Discovery Nm830 Firmware by Gehealthcare

Discovery Xr650 Firmware by Gehealthcare

Discovery Xr656 Firmware by Gehealthcare

Discovery Xr656 Firmware by Gehealthcare

Echopac Bt06 Firmware by Gehealthcare

Image Vault Firmware by Gehealthcare

Infinia Firmware by Gehealthcare

Innova 2000 Firmware by Gehealthcare

Innova 2100 Iq Firmware by Gehealthcare

Innova 212 Iq Firmware by Gehealthcare

Innova 3100 Firmware by Gehealthcare

Innova 3100 Iq Firmware by Gehealthcare

Innova 313 Iq Firmware by Gehealthcare

Innova 4100 Firmware by Gehealthcare

Innova 4100 Iq Firmware by Gehealthcare

Innova Igs 520 Firmware by Gehealthcare

Innova Igs 530 Firmware by Gehealthcare

Innova Igs 620 Firmware by Gehealthcare

Innova Igs 630 Firmware by Gehealthcare

Innova Igs 730 Firmware by Gehealthcare

Lightspeed Pro16 Firmware by Gehealthcare

Lightspeed Rt16 Firmware by Gehealthcare

Lightspeed Vct Firmware by Gehealthcare

Logiq 5 Bt03 Firmware by Gehealthcare

Logiq 7 Bt03 Firmware by Gehealthcare

Logiq 7 Bt04 Firmware by Gehealthcare

Logiq 7 Bt06 Firmware by Gehealthcare

Logiq 9 Bt02 Firmware by Gehealthcare

Logiq 9 Bt03 Firmware by Gehealthcare

Logiq 9 Bt04 Firmware by Gehealthcare

Logiq 9 Bt06 Firmware by Gehealthcare

Optima 3100 Firmware by Gehealthcare

Optima 320 Firmware by Gehealthcare

Optima Advance Firmware by Gehealthcare

Optima Cl320 Firmware by Gehealthcare

Optima Cl320i Firmware by Gehealthcare

Optima Cl323i Firmware by Gehealthcare

Optima Ct520 Firmware by Gehealthcare

Optima Ct540 Firmware by Gehealthcare

Optima Ct580 Firmware by Gehealthcare

Optima Ct580rt Firmware by Gehealthcare

Optima Ct580w Firmware by Gehealthcare

Optima Ct660 Firmware by Gehealthcare

Optima Ct670 Firmware by Gehealthcare

Optima Ct68 Firmware by Gehealthcare

Optima Expert \& Professional Firmware by Gehealthcare