Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistIcscertCVELIST:CVE-2014-5406
HistoryJul 06, 2015 - 7:10 p.m.

CVE-2014-5406

2015-07-0619:10:00
icscert
www.cve.org
1

7.4 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.5%

JSON

The Hospira LifeCare PCA Infusion System before 7.0 does not validate network traffic associated with sending a (1) drug library, (2) software update, or (3) configuration change, which allows remote attackers to modify settings or medication data via packets on the (a) TELNET, (b) HTTP, © HTTPS, or (d) UPNP port. NOTE: this issue might overlap CVE-2015-3459.

Related

prion 2
ics 3
cve 2
nvd 2
threatpost 1
cvelist 1
prion
prion
Design/Logic Flaw
2015-07-06 19:59:00
Authentication flaw
2015-04-29 23:59:00
ics
ics
Hospira LifeCare PCA Infusion System Vulnerabilities
2018-08-23 12:00:00
Hospira LifeCare PCA Infusion System Vulnerabilities (Update A)
2018-08-23 12:00:00
Hospira LifeCare PCA Infusion System Vulnerabilities (Update B)
2018-08-23 12:00:00
cve
cve
CVE-2014-5406
2015-07-06 19:59:00
CVE-2015-3459
2015-04-29 23:59:00
nvd
nvd
CVE-2014-5406
2015-07-06 19:59:00
CVE-2015-3459
2015-04-29 23:59:00
threatpost
threatpost
Vulnerability-Riddled Drug Pumps Open to Takeover
2015-05-05 14:34:02
cvelist
cvelist
CVE-2015-3459
2015-04-29 23:00:00

7.4 High

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.5%

JSON
Related for CVELIST:CVE-2014-5406
prion2ics3cve2nvd2threatpost1cvelist1