Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-5293

Malware in sbrugna...

9CVSS9.2AI score0.02373EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-5289

Malware in sbrugna...

10CVSS9.5AI score0.05009EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-5288

Malware in sbrugna...

2.1CVSS9.2AI score0.00329EPSS
Exploits0References2
NVD
NVD
added 2015/04/03 10:59 a.m.20 views

CVE-2014-5405

Hospira MedNet before 6.1 uses a hardcoded cleartext password to control SQL database authorization, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password...

9CVSS9.3AI score0.02373EPSS
Exploits0References3
NVD
NVD
added 2015/04/03 10:59 a.m.17 views

CVE-2014-5403

Hospira MedNet before 6.1 uses hardcoded cryptographic keys for protection of data transmission from infusion pumps, which allows remote attackers to obtain sensitive information by sniffing the network...

6.8CVSS9.2AI score0.01778EPSS
Exploits0References3
Prion
Prion
added 2015/04/03 10:59 a.m.17 views

Design/Logic Flaw

The installation component in Hospira MedNet before 6.1 places cleartext credentials in configuration files, which allows local users to obtain sensitive information by reading a file...

2.1CVSS6.2AI score0.00329EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2015/04/03 10:59 a.m.20 views

CVE-2014-5400

The installation component in Hospira MedNet before 6.1 places cleartext credentials in configuration files, which allows local users to obtain sensitive information by reading a file...

6.8CVSS8.5AI score0.00329EPSS
Exploits0References3
Prion
Prion
added 2015/04/03 10:59 a.m.17 views

Hardcoded credentials

Hospira MedNet before 6.1 uses a hardcoded cleartext password to control SQL database authorization, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password...

9CVSS7.6AI score0.02373EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2015/04/03 10:0 a.m.28 views

CVE-2014-5400 Hospira MedNet Password in Configuration File

The installation component in Hospira MedNet before 6.1 places cleartext credentials in configuration files, which allows local users to obtain sensitive information by reading a file...

6.8CVSS8.5AI score0.00329EPSS
Exploits0References2
CVE
CVE
added 2015/04/03 10:0 a.m.46 views

CVE-2014-5403

Summary (CVE-2014-5403) Hospira MedNet before 6.1 uses hard-coded cryptographic keys to protect data transmission from infusion pumps, enabling remote attackers to obtain sensitive information by sniffing network traffic. Affected software: MedNet server software (pre-6.1). Underlying issue: hard...

6.8CVSS6.4AI score0.01778EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2015/04/03 10:0 a.m.60 views

CVE-2014-5400

CVE-2014-5400 affects Hospira MedNet prior to version 6.1, where the installation component stores usernames/passwords in plaintext in configuration files, enabling local attackers to read sensitive credentials. Exploitation details: local access needed; impact includes compromise of MedNet insta...

6.8CVSS5.9AI score0.00329EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2015/04/03 10:0 a.m.17 views

CVE-2014-5403 Hospira MedNet Use of Hard-coded Cryptographic Key

Hospira MedNet before 6.1 uses hardcoded cryptographic keys for protection of data transmission from infusion pumps, which allows remote attackers to obtain sensitive information by sniffing the network...

6.8CVSS9.2AI score0.01778EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/04/03 10:0 a.m.24 views

CVE-2014-5405 Hospira MedNet Use of Hard-coded Password

Hospira MedNet before 6.1 uses a hardcoded cleartext password to control SQL database authorization, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password...

9CVSS9.3AI score0.02373EPSS
Exploits0References2
CNVD
CNVD
added 2015/04/02 12:0 a.m.5 views

Hospira MedNet Arbitrary Code Execution Vulnerability

MedNet manages drug libraries, firmware updates, and configurations for Hospira IV pumps for use in the healthcare and public health sectors. MedNet uses a vulnerable version of JBoss Enterprise Application Platform, which could allow an unauthenticated user to execute arbitrary code on the targe...

10CVSS7.9AI score0.05009EPSS
Exploits0References1
CNVD
CNVD
added 2015/04/02 12:0 a.m.3 views

Hospira MedNet Hardcoded Key Vulnerability

MedNet manages drug libraries, firmware updates, and configurations for Hospira IV pumps for use in the healthcare and public health sectors. MedNet uses hard-coded keys that allow attackers to intercept encrypted communications from syringe pumps...

6.8CVSS6.9AI score0.01778EPSS
Exploits0References1
CNVD
CNVD
added 2015/04/02 12:0 a.m.4 views

Hospira MedNet Hardcoded Password Vulnerability (CNVD-2015-02160)

MedNet manages drug libraries, firmware updates, and configurations for Hospira IV pumps for use in the healthcare and public health sectors. MedNet uses plain text stored passwords for the SQL database, which allows an attacker to compromise the MedNet SQL server and gain administrator access to...

9CVSS7.5AI score0.02373EPSS
Exploits0References1
CNVD
CNVD
added 2015/04/02 12:0 a.m.4 views

Hospira MedNet Password Disclosure Vulnerability

MedNet manages drug libraries, firmware updates, and configurations for Hospira IV pumps for use in the healthcare and public health sectors. MedNet installs with a username and password stored in plaintext on the local file system, which allows a malicious user to disrupt the MedNet installation...

6.8CVSS6.6AI score0.00329EPSS
Exploits0References1
Rows per page
Query Builder