Lucene search

[email protected]CVE-2015-3955

HistoryJul 06, 2015 - 7:59 p.m.

CVE-2015-3955

2015-07-0619:59:02

CWE-119

[email protected]

web.nvd.nist.gov

cve

2015

3955

buffer overflow

security vulnerability

remote code execution

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.4 High

AI Score

Confidence

Low

0.042 Low

EPSS

Percentile

92.3%

JSON

Stack-based buffer overflow in Hospira LifeCare PCA Infusion System 5.0 and earlier, and possibly other versions, allows remote attackers to execute arbitrary code via unspecified vectors.

Affected configurations

NVD

Node

hospiralifecare_pcainfusion_firmwareRange≤5.0

AND

hospiralifecare_pca3Match-

hospiralifecare_pca5Match-

CPENameOperatorVersion
hospira:lifecare_pcainfusion_firmwarehospira lifecare pcainfusion firmwarele5.0

CPE	Name	Operator	Version
hospira:lifecare_pcainfusion_firmware	hospira lifecare pcainfusion firmware	le	5.0

References

www.fda.gov/MedicalDevices/Safety/AlertsandNotices/ucm446809.htm

www.securityfocus.com/bid/75132

ics-cert.us-cert.gov/advisories/ICSA-15-125-01B

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.4 High

AI Score

Confidence

Low

0.042 Low

EPSS

Percentile

92.3%

JSON

Related for CVE-2015-3955

prion1 cvelist1 nvd1 ics2