Unrated severityNVD Advisory· Published Aug 4, 2015· Updated May 6, 2026

CVE-2011-5324

Description

The TeraRecon server, as used in GE Healthcare Centricity PACS-IW 3.7.3.7, 3.7.3.8, and possibly other versions, has a password of (1) shared for the shared user and (2) scan for the scan user, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or product that requires a fixed value.

Affected products

Gehealthcare/Centricity Pacs Iw2 versions
cpe:2.3:a:gehealthcare:centricity_pacs-iw:3.7.3.7:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:gehealthcare:centricity_pacs-iw:3.7.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:gehealthcare:centricity_pacs-iw:3.7.3.8:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

apps.gehealthcare.com/servlet/ClientServlet/3.7.3.7+Installation+Guide.pdfnvd
apps.gehealthcare.com/servlet/ClientServlet/3.7.3.8+Installation+guide.pdfnvd
www.forbes.com/sites/thomasbrewster/2015/07/10/vulnerable-breasts/nvd
twitter.com/digitalbond/status/619250429751222277nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000