← back
CVE-2021-38398

Reliance on Component that is not Updateable for Boston Scientific Zoom Latitude

CVSS 6.5 MEDIUMEPSS 0.4%CWE-1329
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.5EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
04 Oct 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The affected device uses off-the-shelf software components that contain unpatched vulnerabilities. A malicious attacker with physical access to the affected device could exploit these vulnerabilities.
CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:L
Affected products
Boston Scientific · ZOOM LATITUDE

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://us-cert.cisa.gov/ics/advisories/icsma-21-273-01