Lucene search
HistoryApr 03, 2015 - 10:59 a.m.
CVE-2014-5400
hospira mednet
cve-2014-5400
installation component
cleartext credentials
local users
sensitive information
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
5.9 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
0.4%
The installation component in Hospira MedNet before 6.1 places cleartext credentials in configuration files, which allows local users to obtain sensitive information by reading a file.
Affected configurations
Node
hospiramednetRange≤5.8
| CPE | Name | Operator | Version |
|---|---|---|---|
| hospira:mednet | hospira mednet | le | 5.8 |
Related
nvd
nvd
CVE-2014-5400
2015-04-03 10:59:00
prion
prion
Design/Logic Flaw
2015-04-03 10:59:00
cvelist
cvelist
CVE-2014-5400
2015-04-03 10:00:00
ics
ics
Hospira MedNet Vulnerabilities
2018-08-23 12:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
5.9 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
0.4%
Related for CVE-2014-5400