CVE-2020-6977 - Vulnerability Details

A restricted desktop environment escape vulnerability exists in the Kiosk Mode functionality of affected devices. Specially crafted inputs can allow the user to escape the restricted environment, resulting in access to the underlying operating system. Affected devices include the following GE Ultrasound Products: Vivid products - all versions; LOGIQ - all versions not including LOGIQ 100 Pro; Voluson - all versions; Versana Essential - all versions; Invenia ABUS Scan station - all versions; Venue - all versions not including Venue 40 R1-3 and Venue 50 R4-5

No CVSS v4.0

Attack Vector Physical

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.00255.

Key SSVC decision points have not yet been added.

Vendors	Products
Ge	Invenia Abus Scan Station Invenia Abus Scan Station Firmware Logiq E10 Logiq E10 Firmware Logiq E9 Logiq E9 Firmware Logiq E9 With Xdclear Logiq E9 With Xdclear Firmware Logiq P9 Logiq P9 Firmware Logiq S7 Logiq S7 Firmware Logiq S8 Logiq S8 Firmware Venue Go Venue Go Firmware Versana Essential Versana Essential Firmware Vivid E90 Vivid E90 Firmware Vivid E95 Vivid E95 Firmware Vivid Iq Vivid Iq Firmware Vivid S70n Vivid S70n Firmware Vivid T8 Vivid T8 Firmware Vivid T9 Vivid T9 Firmware Voluson Voluson Firmware

Configuration 1 [-]

AND

cpe:2.3:o:ge:vivid_e95_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:vivid_e95:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:ge:vivid_e90_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:vivid_e90:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:ge:vivid_s70n_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:vivid_s70n:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:ge:vivid_t8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:vivid_t8:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:ge:vivid_t9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:vivid_t9:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:ge:vivid_iq_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:vivid_iq:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:ge:logiq_e10_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:logiq_e10:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:ge:logiq_e9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:logiq_e9:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:ge:logiq_s8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:logiq_s8:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:ge:logiq_s7_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:logiq_s7:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:ge:logiq_p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:logiq_p9:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:ge:logiq_e9_with_xdclear_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:logiq_e9_with_xdclear:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:ge:voluson_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:voluson:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:ge:versana_essential_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:versana_essential:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:ge:invenia_abus_scan_station_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:invenia_abus_scan_station:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:ge:venue_go_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:ge:venue_go:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.us-cert.gov/ics/advisories/icsma-20-049-02

History

No history.

MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2020-02-20T20:45:29

Updated: 2024-08-04T09:18:03.015Z

Reserved: 2020-01-14T00:00:00

Link: CVE-2020-6977

Vulnrichment

No data.

NVD

Status : Modified

Published: 2020-02-20T21:15:11.787

Modified: 2024-11-21T05:36:25.253

Link: CVE-2020-6977

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Attack Vector Physical

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Metrics

Attack Vector Physical

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object