Unsecured Default Passwords in GE Healthcare Discovery XR656 and XR656 G2

Unsecured Default Passwords in GE Healthcare Discovery XR656 and XR656 G2

CVE-2014-7232 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

GE Healthcare Discovery XR656 and XR656 G2 has a password of (1) 2getin for the insite user, (2) 4$xray for the xruser user, and (3) #superxr for the root user, which has unspecified impact and attack vectors. NOTE: it is not clear whether these passwords are default, hardcoded, or dependent on another system or product that requires a fixed value.

Learn more about our User Device Pen Test.