Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/06 2:18 a.m.8 views

CVE-2025-0626

The "monitor" binary in the firmware of the affected product attempts to mount to a hard-coded, routable IP address, bypassing existing device network settings to do so. The function also enables the network interface of the device if it is disabled. The function is triggered by attempting to...

7.7CVSS7.7AI score0.01116EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:30 a.m.12 views

CVE-2024-12248

Contec Health CMS8000 Patient Monitor is vulnerable to an out-of-bounds write, which could allow an attacker to send specially formatted UDP requests in order to write arbitrary data. This could result in remote code execution...

9.8CVSS7.6AI score0.01276EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/04 12:0 a.m.4 views

The vulnerability of the microprogrammed software of medical monitoring devices such as CMS8000 Patient Monitor and Epsimed MN-120 arises from the fact that the output of operations may escape the buffer in memory. This allows an intruder to gain unauthorized access to protected information, execute arbitrary codes, or gain full control over the device.

The vulnerability of the microprogrammed software of the CMS8000 Patient Monitor and Epsimed MN-120 medical devices related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protecte...

10CVSS8.7AI score0.01276EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/01/30 6:17 p.m.26 views

CVE-2025-0626 Hidden Functionality vulnerability in Contec Health CMS8000 Patient Monitor

The "monitor" binary in the firmware of the affected product attempts to mount to a hard-coded, routable IP address, bypassing existing device network settings to do so. The function also enables the network interface of the device if it is disabled. The function is triggered by attempting to...

7.7CVSS0.01116EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/30 6:17 p.m.38 views

CVE-2024-12248 Out-of-bounds Write vulnerability in Contec Health CMS8000 Patient Monitor

Contec Health CMS8000 Patient Monitor is vulnerable to an out-of-bounds write, which could allow an attacker to send specially formatted UDP requests in order to write arbitrary data. This could result in remote code execution...

9.8CVSS0.01276EPSS
Exploits0References2
Rows per page
Query Builder