CVE-2021-27481

2021-06-1611:59:39

CWE-321

icscert

www.cve.org

5.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.4%

JSON

ZOLL Defibrillator Dashboard, v prior to 2.2, The affected products utilize an encryption key in the data exchange process, which is hardcoded. This could allow an attacker to gain access to sensitive information.

CNA Affected

[
  {
    "product": "ZOLL Defibrillator Dashboard",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "All versions prior to 2.2"
      }
    ]
  }
]

References

us-cert.cisa.gov/ics/advisories/icsma-21-161-01