CRITICAL🇬🇧 English

CVE-2020-12040

CVSS 9.8v3.1pub. 2020-06-29upd. 2024-11-21

Sigma Spectrum Infusion System v's6.x (model 35700BAX) and Baxter Spectrum Infusion System Version(s) 8.x (model 35700BAX2) at the application layer uses an unauthenticated clear-text communication channel to send and receive system status and operational data. This could allow an attacker that has circumvented network security measures to view sensitive non-private data or to perform a man-in-the-middle attack.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Baxter Sigma Spectrum Infusion System

    HW
    Baxter
    wszystkie wersje
  • Baxter Sigma Spectrum Infusion System Firmware

    OS
    Baxter
    8.06.0 – 6.05
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2020-12047CRITICAL9.8ten sam produkt

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24), when used with a Baxter Spectrum v8.x (mode...

CVE-2020-12041CRITICAL9.4ten sam produkt

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24) telnet Command-Line Interface, grants access...

CVE-2020-12043CRITICAL9.8ten sam produkt

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24) when configured for wireless networking the ...

CVE-2020-12045CRITICAL9.8ten sam produkt

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24) when used in conjunction with a Baxter Spect...

CVE-2014-5434CRITICAL9.8ten sam produkt

Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version...

CVE-2020-12040 — CRITICAL 9.8 | CVEbaza.pl