Lucene search
K

83 matches found

NVD
NVD
added 2026/06/03 6:16 p.m.10 views

CVE-2019-25720

Dräger SC Monitoring devices SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL contain a denial-of-service vulnerability in all software versions that allows unauthenticated attackers to reboot the monitor by sending a malformed network packet. Attackers can repeatedly send such malformed packet...

7.1CVSS0.00199EPSS
Exploits0References2
CVE
CVE
added 2026/06/03 4:56 p.m.14 views

CVE-2019-25720

This CVE affects Dräger SC Monitoring devices (SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL). The vulnerability is a denial-of-service caused by processing a malformed network packet, allowing an unauthenticated attacker to reboot the monitor. Repeated malformed packets can disrupt patient ...

7.1CVSS5.8AI score0.00199EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/03 4:56 p.m.9 views

EUVD-2019-20161

Dräger SC Monitoring devices SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL contain a denial-of-service vulnerability in all software versions that allows unauthenticated attackers to reboot the monitor by sending a malformed network packet. Attackers can repeatedly send such malformed packet...

7.1CVSS5.8AI score0.00199EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/03 12:30 a.m.11 views

EUVD-2021-34847

Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due to insecure file system permissions that allows local attackers to execute arbitrary code with elevated privileges. Attackers can replace binaries or loaded modules on the host system to execu...

8.3CVSS6.2AI score0.00107EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/03 12:30 a.m.11 views

EUVD-2021-34846

Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due to insecure file system permissions that allows local attackers to execute arbitrary code with elevated privileges. Attackers can replace binaries or loaded modules on the host system to execu...

8.3CVSS6.2AI score0.00107EPSS
Exploits0References3
NVD
NVD
added 2026/06/02 10:16 p.m.13 views

CVE-2024-14036

Dräger Core 1.0.5 and Dräger M540 Converter Service 1.0.9 contain a denial of service vulnerability that allows network-adjacent attackers to trigger high CPU load by sending specially crafted, unencrypted SDC messages during the discovery process. Attackers with access to the hospital network ca...

8.7CVSS0.00284EPSS
Exploits0References2
NVD
NVD
added 2026/06/02 10:16 p.m.24 views

CVE-2021-4480

Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due to insecure file system permissions that allows local attackers to execute arbitrary code with elevated privileges. Attackers can replace binaries or loaded modules on the host system to execu...

8.3CVSS0.00107EPSS
Exploits0References2
CVE
CVE
added 2026/06/02 9:32 p.m.16 views

CVE-2021-4481

CVE-2021-4481 involves Dräger Protector Software, prior to version 6.4.2, which has a local privilege escalation vulnerability caused by insecure file system permissions. According to the connected records, this allows local attackers to replace binaries or loaded modules on the host and execute ...

8.3CVSS6.2AI score0.00107EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/02 9:31 p.m.9 views

CVE-2021-4480 Dräger Protector Software Local Privilege Escalation via Insecure File Permissions

Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due to insecure file system permissions that allows local attackers to execute arbitrary code with elevated privileges. Attackers can replace binaries or loaded modules on the host system to execu...

8.3CVSS6.2AI score0.00107EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/02 9:31 p.m.34 views

CVE-2021-4480 Dräger Protector Software Local Privilege Escalation via Insecure File Permissions

Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due to insecure file system permissions that allows local attackers to execute arbitrary code with elevated privileges. Attackers can replace binaries or loaded modules on the host system to execu...

8.3CVSS0.00107EPSS
Exploits0References2
CVE
CVE
added 2026/06/02 9:31 p.m.18 views

CVE-2021-4480

CVE-2021-4480 affects Dräger Protector Software prior to version 6.4.2. The issue is a local privilege escalation caused by insecure file system permissions that allow a local attacker to replace binaries or loaded modules and execute code with NT SYSTEM privileges. The description does not speci...

8.3CVSS6.2AI score0.00107EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/02 9:27 p.m.10 views

CVE-2025-15653

Dräger Zeus Infinity Empowered Zeus IE and Zeus RS C500 anesthesia workstations contain a local security vulnerability that allows unauthorized individuals with physical access to compromise software integrity via USB interface manipulation. Attackers can exploit the unprotected USB interfaces to...

7CVSS5.8AI score0.00169EPSS
Exploits0References3
CVE
CVE
added 2026/06/02 9:27 p.m.24 views

CVE-2025-15653

The affected products are Dräger Zeus Infinity Empowered (Zeus IE) and Zeus RS C500 anesthesia workstations. The vulnerability is a local privilege escalation via unprotected USB interfaces that attackers with physical access can exploit to compromise software integrity. Reported impact includes ...

7CVSS5.8AI score0.00169EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/02 9:22 p.m.8 views

CVE-2024-14036

Dräger Core 1.0.5 and Dräger M540 Converter Service 1.0.9 contain a denial of service vulnerability that allows network-adjacent attackers to trigger high CPU load by sending specially crafted, unencrypted SDC messages during the discovery process. Attackers with access to the hospital network ca...

8.7CVSS5.8AI score0.00284EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/02 9:22 p.m.35 views

CVE-2024-14036 Dräger Core 1.0.5 Denial of Service via Malformed SDC Message

Dräger Core 1.0.5 and Dräger M540 Converter Service 1.0.9 contain a denial of service vulnerability that allows network-adjacent attackers to trigger high CPU load by sending specially crafted, unencrypted SDC messages during the discovery process. Attackers with access to the hospital network ca...

8.7CVSS0.00284EPSS
Exploits0References2
CVE
CVE
added 2026/06/02 9:22 p.m.17 views

CVE-2024-14036

Dräger Core 1.0.5 and Dräger M540 Converter Service 1.0.9 are affected by a denial-of-service vulnerability where specially crafted, unencrypted SDC discovery messages exhaust CPU resources. Network-adjacent attackers with hospital-network access can trigger high CPU load, causing subsequent SDC ...

8.7CVSS5.8AI score0.00284EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/02 9:22 p.m.9 views

CVE-2024-14036 Dräger Core 1.0.5 Denial of Service via Malformed SDC Message

Dräger Core 1.0.5 and Dräger M540 Converter Service 1.0.9 contain a denial of service vulnerability that allows network-adjacent attackers to trigger high CPU load by sending specially crafted, unencrypted SDC messages during the discovery process. Attackers with access to the hospital network ca...

8.7CVSS5.8AI score0.00284EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/02 9:6 p.m.6 views

CVE-2022-4992 Dräger Infinity M540 VG4.1.1 Spoofed Network Message Handling DoS/Tampering

Dräger Infinity Acute Care System and Standalone Infinity M540 patient monitors versions VG4.1.1, VG4.0.3, and lower with VG4.2 partially affected contain a network message handling vulnerability that allows remote attackers to inject spoofed or tampered data and cause denial-of-service condition...

8.8CVSS5.8AI score0.0016EPSS
Exploits0References2
CVE
CVE
added 2026/06/02 9:6 p.m.20 views

CVE-2022-4992

CVE-2022-4992 affects Dräger Infinity Acute Care System and Standalone Infinity M540, VG4.1.1, VG4.0.3 and lower (VG4.2 partially affected). The issue is a network message handling vulnerability that lets remote attackers inject spoofed/tampered data to cause denial-of-service, potentially modify...

8.8CVSS5.8AI score0.0016EPSS
Exploits0References2
NVD
NVD
added 2026/06/02 8:16 p.m.17 views

CVE-2021-4479

Dräger Atlan A350 versions 1.00 up to and including 1.01 contains an improper input handling vulnerability that allows attackers to cause a denial of service by sending specifically crafted non-Medibus-compliant data through the Medibus interface. Attackers can transmit malformed data to overload...

6.3CVSS0.00241EPSS
Exploits0References2
Rows per page
Query Builder