HIGH🇬🇧 English

CVE-2015-7909

CVSS 7.3v3.0pub. 2016-01-22upd. 2026-05-06

Stack-based buffer overflow in Hospira Communication Engine (CE) before 1.2 in LifeCare PCA Infusion System 5.07, Plum A+ Infusion System 13.40, and Plum A+3 Infusion System 13.40 allows remote attackers to cause a denial of service or possibly have unspecified other impact via traffic on TCP port 5000.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
  • Hospira Communication Engine

    OS
    Hospira
    ≤ 1.0
  • Hospira Lifecare Pca Infusion System

    HW
    Hospira
    5.0.7
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoSMemory
CWE
Referencje

Powiązane podatności

CVE-2014-5401CRITICAL9.8ten sam vendor

Hospira MedNet software version 5.8 and prior uses vulnerable versions of the JBoss Enterprise Application Pla...

CVE-2015-3958HIGH7.8ten sam vendor

Hospira LifeCare PCA Infusion System 5.0 and earlier, and possibly other versions, allows remote attackers to ...

CVE-2014-5406HIGH7.6ten sam vendor

The Hospira LifeCare PCA Infusion System before 7.0 does not validate network traffic associated with sending ...

CVE-2015-3955HIGH10.0ten sam vendor

Stack-based buffer overflow in Hospira LifeCare PCA Infusion System 5.0 and earlier, and possibly other versio...

CVE-2015-3459HIGH10.0ten sam vendor

The communication module on the Hospira LifeCare PCA Infusion System before 7.0 does not require authenticatio...