CVE-2025-0626

Name of the Vulnerable Software and Affected Versions Contec Health CMS8000 Patient Monitor (affected versions not specified) Epsimed MN-120 patient monitor (affected versions not specified)

Description The affected product sends out remote access requests to a hard-coded IP address, bypassing existing device network settings to do so. This could serve as a backdoor and lead to a malicious actor being able to upload and overwrite files on the device. The issue is related to the device's network configuration bypass mechanism. It has been reported that this issue is being actively exploited.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider disconnecting the device from the network to minimize the risk of exploitation. Restrict access to the device and its components to prevent potential malicious activities. Avoid using the device until a patch or fix is available.