ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Qhov tsis zoo tseem ceeb hauv cov cuab yeej kho mob rau kev saib xyuas tus neeg mob

Qhov tsis zoo tseem ceeb hauv cov cuab yeej kho mob rau kev saib xyuas tus neeg mob

CyberMDX tuam txhab ua laj mej pej xeem cov ntaub ntawv hais txog rau vulnerabilities, cuam tshuam rau ntau yam GE Healthcare cov cuab yeej kho mob tsim los saib xyuas cov neeg mob. Tsib qhov tsis zoo yog muab rau qib siab tshaj plaws (CVSSv3 10 tawm ntawm 10). Cov qhov tsis zoo tau raug sau npe MDhex thiab feem ntau cuam tshuam nrog kev siv cov ntaub ntawv pov thawj uas tau tsim ua ntej siv thoob plaws tag nrho cov khoom siv.

  • CVE-2020-6961 - xa khoom ntawm cov khoom siv ntawm SSH tus yuam sij rau tag nrho cov khoom lag luam, uas tso cai rau koj txuas mus rau ib qho khoom siv thiab ua tiav cov cai ntawm nws. Tus yuam sij no kuj tseem siv tau thaum lub sijhawm hloov khoom xa tuaj.
  • CVE-2020-6962 - cov ntaub ntawv pov thawj uas tau hais ua ntej rau txhua yam khoom siv rau kev sau thiab nyeem nkag mus rau cov ntaub ntawv kaw lus ntawm SMB raws tu qauv;
  • CVE-2020-6963 - muaj peev xwm siv MultiMouse thiab Kavoom KM daim ntawv thov los tswj cov khoom siv nyob deb (simulate keyboard, nas thiab clipboard) yam tsis muaj kev lees paub;
  • CVE-2020-6964 - predefined VNC kev twb kev txuas tsis tau rau tag nrho cov pab kiag li lawm;
  • CVE-2020-6965 - preset yooj yim ib version ntawm Webmin uas tso cai rau cov chaw taws teeb nkag nrog cov cai hauv paus;
  • CVE-2020-6966 - Tus thawj tswj hwm kev teeb tsa hloov tshiab siv rau ntawm cov khoom siv tso cai hloov tshiab spoofing (hloov tshiab tau lees paub los ntawm tus yuam sij SSH paub).

Cov teeb meem cuam tshuam rau lub telemetry sau servers ApexPro thiab CARESCAPE Telemetry Server, CIC (Clinical Information Center) thiab CSCS (CARESCAPE Central Station) platforms, nrog rau B450, B650 thiab B850 cov kab ke saib xyuas neeg mob. Qhov tsis muaj peev xwm tso cai rau kev tswj hwm tag nrho ntawm cov khoom siv, uas tuaj yeem siv los hloov pauv ntawm qib kev ua haujlwm, lov tes taw lub tswb, lossis cov ntaub ntawv tus neeg mob spoof.

Txhawm rau tawm tsam, tus neeg tawm tsam yuav tsum muaj peev xwm tsim kom muaj kev sib txuas hauv network rau lub cuab yeej, piv txwv li los ntawm kev sib txuas hauv tsev kho mob network. Raws li kev tiv thaiv workarounds muaj cais cov subnet nrog cov cuab yeej kho mob los ntawm lub tsev kho mob dav dav network thiab thaiv cov chaw nres nkoj network 22, 137, 138, 139, 445, 10000, 5225, 5800, 5900 thiab 10001 ntawm firewall.

Tau qhov twg los: opennet.ru

Ntxiv ib saib