CVE-2020-27290

2021-03-1521:22:02

CWE-200

icscert

www.cve.org

4.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.4%

JSON

In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, an information disclosure vulnerability in the ventilator allows attackers with physical access to the configuration interface’s logs to get valid checksums for tampered configuration files.

CNA Affected

[
  {
    "product": "Hamilton Medical AG, T1-Ventillator",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Versions 2.2.3 and prior"
      }
    ]
  }
]

References

us-cert.cisa.gov/ics/advisories/icsma-21-047-01