CVE-2024-1629

Name of the Vulnerable Software and Affected Versions: Common Service Desktop (affected versions not specified)

Description: The issue concerns a path traversal vulnerability in the deleteFiles() function of Common Service Desktop, a component of GE HealthCare ultrasound devices. This vulnerability is related to incorrect restriction of directory path names with limited access. Exploitation of this issue may allow an attacker to gain unauthorized access to protected information.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.