HC3 TLP White Alert: Geutebrück G-Cam E2 Series Camera Vulnerabilities - July 28, 2021

Executive Summary

Twelve vulnerabilities, with an overall CVSS score of 9.8, have been discovered in firmware provided by UDP Technology to security camera manufacturer Geutebrück, affecting four camera, and two encoder lines.

The security advisory and latest firmware, which Geutebrück strongly recommends updating to, are located on Geutebrück’s web portal (login required). Additional mitigations are listed in the CISA report, located below, if updates cannot be implemented.

Report

CISA - ICS Advisory (ICSA-21-208-03) Geutebrück G-Cam E2 and G-Code

Impact to HPH Sector

The Healthcare and Public Health Sector is one of the critical infrastructure sectors in which Geutebrück cameras are used. Any of these vulnerabilities, successfully exploited, could lead to either access to sensitive information or allow for remote code execution.

References

GEUTEBRÃœCK - PartnerPortal Login

CISA – Industrial Control System Recommended Practices

Contact Information

If you have any additional questions, please contact us at HC3@hhs.gov.

 

For help with Cybersecurity and Risk Advisory Services exclusively for AHA members, contact:

John Riggi

Senior Advisor for Cybersecurity and Risk, AHA

jriggi@aha.org

(O) +1 202 626 2272

More on John Riggi
Learn more about AHA's Cybersecurity and Risk Advisory Services

Key Resources

Related Resources

Advancing Health Podcast
Leadership Dialogue Series: Cybersecurity and the Fight to Safeguard Health Care
Public
Leadership Rounds
Leadership Dialogue
Public
Special Bulletin
UPDATE: AHA and Health-ISAC Threat Advisory: FBI Advises No Specific Credible Threat Targeting Hospitals
Public
Special Bulletin
AHA and Health-ISAC Bulletin on Threat to Hospitals
Member
AHA Center for Health Innovation Market Scan
Rural Hospitals Move to Enhance Cybersecurity
Advancing Health Podcast
Critical Condition: Cybersecurity in Rural Hospitals with Microsoft Part 2