Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:29 a.m.8 views

CVE-2021-27408

The affected product is vulnerable to an out-of-bounds read, which can cause information leakage leading to arbitrary code execution if chained to the out-of-bounds write vulnerability on the Welch Allyn medical device management tools Welch Allyn Service Tool: versions prior to v1.10, Welch Ally...

7.5CVSS7.6AI score0.01687EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-19773

Malware in sbrugna...

5.3CVSS5.5AI score0.00433EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:25 p.m.10 views

CVE-2020-27262

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 A stored cross-site scripting XSS vulnerability exists in the affected products that allow an attacker to inject arbitrary web script or HTML via the filename parameter to multiple update endpoints of the administrative web...

5.4CVSS5.3AI score0.00675EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:24 p.m.7 views

CVE-2020-27260

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...

5.3CVSS7.2AI score0.00433EPSS
Exploits0
CNNVD
CNNVD
added 2022/09/01 12:0 a.m.6 views

Contec Health CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor 安全漏洞

The Contec Health CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor is a vital signs patient monitor from Contec Health. A security vulnerability exists in the Contec Health CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor that stems from multiple binary application files on the CMS8000 device...

4.4CVSS5.3AI score0.00175EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/09/01 12:0 a.m.8 views

Contec Health CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor 安全漏洞

The Contec Health CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor is a vital signs patient monitor from Contec Japan. The Contec Health CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor suffers from a security vulnerability that stems from a failure of the CMS800 device when attempting to par...

7.5CVSS7.2AI score0.00768EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/09/01 12:0 a.m.4 views

Contec Health CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor 访问控制错误漏洞

The Contec Health CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor is a vital signs patient monitor from Contec Health. The Contec Health CMS8000 CONTEC ICU CCU Vital Signs Patient Monitor suffers from an Access Control Error vulnerability that originates from a threat actor with transient acce...

6.8CVSS6.7AI score0.00359EPSS
Exploits0References4
NVD
NVD
added 2021/06/11 5:15 p.m.13 views

CVE-2021-27408

The affected product is vulnerable to an out-of-bounds read, which can cause information leakage leading to arbitrary code execution if chained to the out-of-bounds write vulnerability on the Welch Allyn medical device management tools Welch Allyn Service Tool: versions prior to v1.10, Welch Ally...

7.5CVSS0.01687EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/06/01 12:0 a.m.4 views

Mmemed Welch Allyn Connex 缓冲区错误漏洞

The Mmemed Welch Allyn Connex is an industrial control device from the Spanish company Mmemed. An advanced touch screen monitor. A buffer error vulnerability exists in Hillrom Welch Allyn, which arises from out-of-bounds reads and writes, and successful exploitation of this vulnerability could...

7.5CVSS7.9AI score0.01687EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/06/01 12:0 a.m.4 views

Mmemed Welch Allyn Connex 缓冲区错误漏洞

The Mmemed Welch Allyn Connex is an industrial control device from the Spanish company Mmemed. An advanced touch screen monitor. A buffer error vulnerability exists in Hillrom Welch Allyn that originates from an out-of-bounds write and can be exploited by an attacker for arbitrary code execution...

9.8CVSS8.9AI score0.01859EPSS
Exploits0References5
OSV
OSV
added 2021/01/08 4:15 p.m.3 views

CVE-2020-27262

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 A stored cross-site scripting XSS vulnerability exists in the affected products that allow an attacker to inject arbitrary web script or HTML via the filename parameter to multiple update endpoints of the administrative web...

5.4CVSS6.1AI score0.00675EPSS
Exploits0References1
NVD
NVD
added 2021/01/08 4:15 p.m.21 views

CVE-2020-27262

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 A stored cross-site scripting XSS vulnerability exists in the affected products that allow an attacker to inject arbitrary web script or HTML via the filename parameter to multiple update endpoints of the administrative web...

5.4CVSS5.2AI score0.00675EPSS
Exploits0References1
OSV
OSV
added 2021/01/08 4:15 p.m.5 views

CVE-2020-27260

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...

5.3CVSS6.1AI score0.00433EPSS
Exploits0References1
NVD
NVD
added 2021/01/08 4:15 p.m.25 views

CVE-2020-27260

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...

5.3CVSS5.6AI score0.00433EPSS
Exploits0References1
Prion
Prion
added 2021/01/08 4:15 p.m.25 views

Cross site scripting

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 A stored cross-site scripting XSS vulnerability exists in the affected products that allow an attacker to inject arbitrary web script or HTML via the filename parameter to multiple update endpoints of the administrative web...

3.5CVSS5.2AI score0.00675EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/01/08 4:15 p.m.18 views

Design/Logic Flaw

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...

2.1CVSS5.5AI score0.00433EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/01/08 3:17 p.m.20 views

CVE-2020-27260

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...

5.6AI score0.00433EPSS
Exploits0References1
CVE
CVE
added 2021/01/08 3:17 p.m.53 views

CVE-2020-27260

CVE-2020-27260 affects Innokas Yhtymä Oy Vital Signs Monitor VC150 (pre-1.7.15). The vuln is an HL7 v2.x injection in HL7 messages triggered by multiple parameters, exploitable by physically proximate attackers with a connected barcode reader. The CVSS v3 base score is 5.3 (NEIGHBOR, HIGH integri...

5.3CVSS5.5AI score0.00433EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/01/08 3:16 p.m.48 views

CVE-2020-27262

The CVE-2020-27262 issue affects Innokas Yhtymä Oy Vital Signs Monitor VC150, prior to Version 1.7.15. A stored cross-site scripting (XSS) vulnerability exists in the administrative web interface that allows an attacker to inject arbitrary web script or HTML via the filename parameter to multiple...

5.4CVSS5.2AI score0.00675EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/01/08 3:16 p.m.24 views

CVE-2020-27262

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 A stored cross-site scripting XSS vulnerability exists in the affected products that allow an attacker to inject arbitrary web script or HTML via the filename parameter to multiple update endpoints of the administrative web...

5.2AI score0.00675EPSS
Exploits0References1
Rows per page
Query Builder