Vulnerabilidades em Baxter

20 resultados
CVE-2014-5432Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 is remotely accessible viaEPSS 2.6%CVE-2014-5433An unauthenticated remote attacker may be able to execute commands to view wireless account credentials that are stored in cleartext on BaxtEPSS 2.1%CVE-2014-5434Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 has a default account withEPSS 1.6%CVE-2024-48966CRITICALLife2000 service tools for test and calibration do not support user authenticationEPSS 0.7%CVE-2024-48967CRITICALLife2000 ventilator and Service PC lack sufficient audit logging capabilitiesEPSS 0.6%CVE-2024-6795CRITICALVulnerability in Baxter Connex Health PortalEPSS 0.6%CVE-2022-26393MEDIUMFormat String vulnerabilityEPSS 0.6%CVE-2022-26392LOWFormat String vulnerabilityEPSS 0.6%CVE-2024-5176CRITICALVulnerability in Welch Allyn Configuration Tool SoftwareEPSS 0.5%CVE-2022-26390MEDIUMUnencrypted internal storage of security credentialsEPSS 0.4%CVE-2024-6796HIGHVulnerability in Baxter Connex Health PortalEPSS 0.4%CVE-2024-1275CRITICALVulnerability in Baxter Welch Allyn Connex Spot MonitorEPSS 0.4%CVE-2014-5431Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 contains a hard-coded passEPSS 0.4%CVE-2022-26394MEDIUMUnauthenticated network reconfiguration via TCP/UDPEPSS 0.3%CVE-2024-48973CRITICALDebug port on Life2000 Ventilator serial interface is enabled by defaultEPSS 0.2%CVE-2024-48971CRITICALClinician Password and Serial Number Clinician Password are hard-coded in Life2000 VentilatorEPSS 0.2%CVE-2024-48970CRITICALLife2000 Ventilator microcontroller lacks memory protectionEPSS 0.2%CVE-2024-9832CRITICALNo limit on failed login attempts with Clinician Password or Serial Number Clinician Password on Life2000 VentilatorEPSS 0.2%CVE-2024-48974CRITICALLife2000 Ventilator does not perform proper file integrity checks when adopting firmware updatesEPSS 0.2%CVE-2024-9834CRITICALImproper data protection on Life2000 ventilator serial interfaceEPSS 0.1%