PT-2015-1621 · Hospira · Hospira Lifecare Pca Infusion System
Publicado
2015-07-06
·
Atualizado
2015-07-08
·
CVE-2015-1011
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Hospira LifeCare PCA Infusion System versions prior to 7.0
Description
The issue is related to the lack of protection for service data in the device's software, which can be exploited by a remote attacker to gain access to the device. Hardcoded credentials in the system make it easier for attackers to obtain access.
Recommendations
For versions prior to 7.0, update to version 7.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the device to minimize the risk of exploitation.
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Hospira Lifecare Pca Infusion System