HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2022-22767

CVSS 8.8v3.1pub. 2022-06-02upd. 2024-11-21

Specific BD Pyxis™ products were installed with default credentials and may presently still operate with these credentials. There may be scenarios where BD Pyxis™ products are installed with the same default local operating system credentials or domain-joined server(s) credentials that may be shared across product types. If exploited, threat actors may be able to gain privileged access to the underlying file system and could potentially exploit or gain access to ePHI or other sensitive information.

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Bd Pyxis Anesthesia Station Es

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Anesthesia Station Es Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Ciisafe

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Ciisafe Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Logistics

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Logistics Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Medbank

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Medbank Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Medstation 4000

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Medstation 4000 Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Medstation Es

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Medstation Es Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Medstation Es Server

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Medstation Es Server Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Parassist

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Parassist Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Rapid Rx

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Rapid Rx Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Stockstation

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Stockstation Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Supplycenter

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Supplycenter Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Supplyroller

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Supplyroller Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Supplystation

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Supplystation Ec

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Supplystation Ec Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Supplystation Firmware

    OS
    Bd
    wszystkie wersje
  • Bd Pyxis Supplystation Rf Auxiliary

    HW
    Bd
    wszystkie wersje
  • Bd Pyxis Supplystation Rf Auxiliary Firmware

    OS
    Bd
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2022-22766HIGH7.0ten sam produkt

Hardcoded credentials are used in specific BD Pyxis products. If exploited, threat actors may be able to gain ...

CVE-2020-10598MEDIUM6.1ten sam produkt

In BD Pyxis MedStation ES System v1.6.1 and Pyxis Anesthesia (PAS) ES System v1.6.1, a restricted desktop envi...

CVE-2019-10959CRITICAL10.0ten sam vendor

BD Alaris Gateway Workstation Versions, 1.1.3 Build 10, 1.1.3 MR Build 11, 1.2 Build 15, 1.3.0 Build 14, 1.3.1...

CVE-2018-14786CRITICAL9.4ten sam vendor

Becton, Dickinson and Company (BD) Alaris Plus medical syringe pumps (models Alaris GS, Alaris GH, Alaris CC, ...

CVE-2017-6022CRITICAL9.8ten sam vendor

A hard-coded password issue was discovered in Becton, Dickinson and Company (BD) PerformA, Version 2.0.14.0 an...