Lucene search
K

4 matches found

NVD
NVD
added 2019/11/08 8:15 p.m.21 views

CVE-2019-13543

Medtronic Valleylab Exchange Client version 3.4 and below, Valleylab FT10 Energy Platform VLFT10GEN software version 4.0.0 and below, and Valleylab FX8 Energy Platform VLFX8GEN software version 1.1.0 and below use multiple sets of hard-coded credentials. If discovered, they can be used to read...

7.5CVSS8AI score0.01895EPSS
Exploits0References3
OSV
OSV
added 2019/11/08 8:15 p.m.2 views

CVE-2019-13543

Medtronic Valleylab Exchange Client version 3.4 and below, Valleylab FT10 Energy Platform VLFT10GEN software version 4.0.0 and below, and Valleylab FX8 Energy Platform VLFX8GEN software version 1.1.0 and below use multiple sets of hard-coded credentials. If discovered, they can be used to read...

7.5CVSS7.1AI score0.01895EPSS
Exploits0References3
Prion
Prion
added 2019/11/08 8:15 p.m.22 views

Design/Logic Flaw

Medtronic Valleylab Exchange Client version 3.4 and below, Valleylab FT10 Energy Platform VLFT10GEN software version 4.0.0 and below, and Valleylab FX8 Energy Platform VLFX8GEN software version 1.1.0 and below use the descrypt algorithm for OS password hashing. While interactive, network-based...

7.2CVSS8.4AI score0.00268EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2019/11/08 7:7 p.m.129 views

CVE-2019-13539

CVE-2019-13539 affects Medtronic Valleylab FT10 and FX8 platforms (Exchange Client v3.4 and below; FT10 v4.0.0 and below; FX8 v1.1.0 and below) due to the use of the descrypt OS password hashing (CWE-328). The issue enables an attacker who can access the device to obtain local shell access and re...

7.8CVSS7.7AI score0.00268EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder