← back
CVE-2020-6964

CVE-2020-6964

EPSS 1.4%CWE-306
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
24 Jan 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X and CARESCAPE Central Station (CSCS) Versions 2.X, the integrated service for keyboard switching of the affected devices could allow attackers to obtain remote keyboard input access without authentication over the network.
Affected products
n/a · GE CARESCAPE Telemetry Server,ApexPro Telemetry Server,CARESCAPE Central Station,Clinical Information Center systems,CARESCAPE B450,B650,B850 Monitors

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.us-cert.gov/ics/advisories/icsma-20-023-01