CVE-2021-41835

Name of the Vulnerable Software and Affected Versions Fresenius Kabi Agilia Link + version 3.0

Description The issue concerns the lack of enforcement of transport layer encryption, which may result in transmitted data being sent in cleartext. Although transport layer encryption is available on Port TCP/443, the affected service does not automatically redirect from the unencrypted service on Port TCP/80 to the encrypted service.

Recommendations For Fresenius Kabi Agilia Link + version 3.0, consider configuring the service to perform an automated redirect from Port TCP/80 to Port TCP/443 to ensure encryption of transmitted data. As a temporary workaround, restrict access to the unencrypted service on Port TCP/80 to minimize the risk of exploitation.