CVE-2020-36549 HIGH

CVE-2020-36549: GE Voluson S8 Windows Operating System Patches privileges management

Vendor Ge

Product Voluson S8

Weakness CWE-269

Published June 17, 2022

Last update April 16, 2025

View on NVD All CVEs

CVSS base score

8.8/10

Attack vector Adjacent

Attack complexity Low

Privileges required None

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A vulnerability classified as critical was found in GE Voluson S8. Affected is the underlying Windows XP operating system. Missing patches might introduce an excessive attack surface. Access to the local network is required for this attack to succeed.

Key dates

02Disclosure timeline

June 17, 2022 CVE published

April 16, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2020-36549 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/269.html

Related vulnerabilities

CVE-2020-36549: GE Voluson S8 Windows Operating System Patches privileges management

01Description

02Disclosure timeline

03References

04Related CVE