What is GHSA-344f-p6q5-rw6q?

GHSA-344f-p6q5-rw6q is a security advisory published by GitHub Security Advisories with Critical severity. Spacelabs Healthcare Sentinel versions 10.5.x and higher and 11.x.x before 11.6.0 contain an...

Which CVE IDs does GHSA-344f-p6q5-rw6q cover?

GHSA-344f-p6q5-rw6q covers the following CVE IDs: CVE-2026-0611. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-344f-p6q5-rw6q?

GHSA-344f-p6q5-rw6q has a CVSS v3 base score of 9.8, published by GitHub Security Advisories.

GHSA-344f-p6q5-rw6qCriticalCVSS 9.8

Spacelabs Healthcare Sentinel versions 10.5.x and higher and 11.x.x before 11.6.0 contain an...

Vendor

GitHub Security Advisories

Published

June 2, 2026

Last Modified

June 2, 2026

🔗 CVE IDs covered (1)

CVE-2026-0611 →

📋 Description

Spacelabs Healthcare Sentinel versions 10.5.x and higher and 11.x.x before 11.6.0 contain an unauthenticated remote code execution vulnerability through a deprecated .NET Remoting HTTP channel exposed on port 8989 that allows attackers to perform arbitrary file read and write operations by supplying valid .NET URI endpoints. Attackers can write ASPX webshells to the IIS wwwroot directory to achieve unauthenticated remote code execution on the system. Port 8989 is not exposed in a default Sentinel installation; exploitation requires that the .NET Remoting port has been explicitly made network-accessible through deliberate configuration or network policy changes.

🔗 References (5)

https://nvd.nist.gov/vuln/detail/CVE-2026-0611
https://spacelabshealthcare.com/products/diagnostic-cardiology/connectivity/sentinel
https://spacelabshealthcare.com/wp-content/uploads/2026/06/079-0273-00-RevA-Security-Advisory-Sentinel-.NET-Remoting-Vulnerability.pdf
https://www.vulncheck.com/advisories/spacelabs-healthcare-sentinel-x-unauthenticated-rce-via-net-remoting
https://github.com/advisories/GHSA-344f-p6q5-rw6q