CVE-2020-6977: Input Validation
First published: Thu Feb 20 2020(Updated: )
A restricted desktop environment escape vulnerability exists in the Kiosk Mode functionality of affected devices. Specially crafted inputs can allow the user to escape the restricted environment, resulting in access to the underlying operating system. Affected devices include the following GE Ultrasound Products: Vivid products - all versions; LOGIQ - all versions not including LOGIQ 100 Pro; Voluson - all versions; Versana Essential - all versions; Invenia ABUS Scan station - all versions; Venue - all versions not including Venue 40 R1-3 and Venue 50 R4-5
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ge Vivid E95 Firmware | ||
| Ge Vivid E95 | ||
| Ge Vivid E90 Firmware | ||
| Ge Vivid E90 | ||
| Ge Vivid S70n Firmware | ||
| Ge Vivid S70n | ||
| Ge Vivid T8 Firmware | ||
| Ge Vivid T8 | ||
| Ge Vivid T9 Firmware | ||
| Ge Vivid T9 | ||
| Ge Vivid Iq Firmware | ||
| Ge Vivid Iq | ||
| Ge Logiq E10 Firmware | ||
| Ge Logiq E10 | ||
| Ge Logiq E9 Firmware | ||
| Ge Logiq E9 | ||
| Ge Logiq S8 Firmware | ||
| Ge Logiq S8 | ||
| Ge Logiq S7 Firmware | ||
| Ge Logiq S7 | ||
| Ge Logiq P9 Firmware | ||
| Ge Logiq P9 | ||
| Ge Logiq E9 With Xdclear Firmware | ||
| Ge Logiq E9 With Xdclear | ||
| Ge Voluson Firmware | ||
| Ge Voluson | ||
| Ge Versana Essential Firmware | ||
| Ge Versana Essential | ||
| Ge Invenia Abus Scan Station Firmware | ||
| Ge Invenia Abus Scan Station | ||
| Ge Venue Go Firmware | ||
| Ge Venue Go |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/type
- agent/event
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/tags
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/ge
- canonical/ge vivid e95 firmware
- canonical/ge vivid e95
- canonical/ge vivid e90 firmware
- canonical/ge vivid e90
- canonical/ge vivid s70n firmware
- canonical/ge vivid s70n
- canonical/ge vivid t8 firmware
- canonical/ge vivid t8
- canonical/ge vivid t9 firmware
- canonical/ge vivid t9
- canonical/ge vivid iq firmware
- canonical/ge vivid iq
- canonical/ge logiq e10 firmware
- canonical/ge logiq e10
- canonical/ge logiq e9 firmware
- canonical/ge logiq e9
- canonical/ge logiq s8 firmware
- canonical/ge logiq s8
- canonical/ge logiq s7 firmware
- canonical/ge logiq s7
- canonical/ge logiq p9 firmware
- canonical/ge logiq p9
- canonical/ge logiq e9 with xdclear firmware
- canonical/ge logiq e9 with xdclear
- canonical/ge voluson firmware
- canonical/ge voluson
- canonical/ge versana essential firmware
- canonical/ge versana essential
- canonical/ge invenia abus scan station firmware
- canonical/ge invenia abus scan station
- canonical/ge venue go firmware
- canonical/ge venue go