CVE-2018-10599

Name of the Vulnerable Software and Affected Versions: IntelliVue Patient Monitors MP Series versions Rev B-M IntelliVue Patient Monitors MX versions Rev J-M Avalon Fetal/Maternal Monitors FM20/FM30/FM40/FM50 with software Revisions F.0, G.0, J.3 IntelliVue Patient Monitors X3/MX100 version Rev M

Description: The issue allows an unauthenticated attacker to read memory from an attacker-chosen device address within the same subnet.

Recommendations: For IntelliVue Patient Monitors MP Series versions Rev B-M, update to a version that includes the necessary security patches. For IntelliVue Patient Monitors MX versions Rev J-M, apply the recommended configuration changes to restrict access to the vulnerable component. For Avalon Fetal/Maternal Monitors FM20/FM30/FM40/FM50 with software Revisions F.0, G.0, J.3, restrict network access to the device to minimize the risk of exploitation. For IntelliVue Patient Monitors X3/MX100 version Rev M, consider implementing additional security measures to prevent unauthorized access to the device.