CVE-2021-27410

The affected product is vulnerable to an out-of-bounds write, which may result in corruption of data or code execution on the Welch Allyn medical device management tools Welch Allyn Service Tool: versions prior to v1.10, Welch Allyn Connex Device Integration Suite – Network Connectivity Engine NC...

CVE-2021-27408

The affected product is vulnerable to an out-of-bounds read, which can cause information leakage leading to arbitrary code execution if chained to the out-of-bounds write vulnerability on the Welch Allyn medical device management tools Welch Allyn Service Tool: versions prior to v1.10, Welch Ally...

EUVD-2021-14164

Malware in sbrugna...

EUVD-2024-17036

Malicious code in bioql PyPI...

EUVD-2024-46423

Malicious code in bioql PyPI...

CVE-2024-5176

Insufficiently Protected Credentials vulnerability in Baxter Welch Allyn Configuration Tool may allow Remote Services with Stolen Credentials.This issue affects Welch Allyn Configuration Tool: versions 1.9.4.1 and prior...

CVE-2024-1275

Use of Default Cryptographic Key vulnerability in Baxter Welch Allyn Connex Spot Monitor may allow Configuration/Environment Manipulation.This issue affects Welch Allyn Connex Spot Monitor in all versions prior to 1.52...

CVE-2024-5176 Vulnerability in Welch Allyn Configuration Tool Software

Insufficiently Protected Credentials vulnerability in Baxter Welch Allyn Configuration Tool may allow Remote Services with Stolen Credentials.This issue affects Welch Allyn Configuration Tool: versions 1.9.4.1 and prior...

CVE-2024-5176 Vulnerability in Welch Allyn Configuration Tool Software

Insufficiently Protected Credentials vulnerability in Baxter Welch Allyn Configuration Tool may allow Remote Services with Stolen Credentials.This issue affects Welch Allyn Configuration Tool: versions 1.9.4.1 and prior...

CVE-2024-1275 Vulnerability in Baxter Welch Allyn Connex Spot Monitor

Use of Default Cryptographic Key vulnerability in Baxter Welch Allyn Connex Spot Monitor may allow Configuration/Environment Manipulation.This issue affects Welch Allyn Connex Spot Monitor in all versions prior to 1.52...

CVE-2024-1275 Vulnerability in Baxter Welch Allyn Connex Spot Monitor

Use of Default Cryptographic Key vulnerability in Baxter Welch Allyn Connex Spot Monitor may allow Configuration/Environment Manipulation.This issue affects Welch Allyn Connex Spot Monitor in all versions prior to 1.52...

Baxter Welch Allyn Configuration Tool Security Vulnerability

The Baxter Welch Allyn Configuration Tool is a monitor from Baxter, Inc. A security vulnerability exists in Baxter Welch Allyn Configuration Tool version 1.9.4.1 and prior versions, which stems from insufficient credential protection in the Configuration Tool and could allow remote servicing with...

Baxter Welch Allyn Connex Spot Monitor

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.1 ATTENTION : Exploitable remotely Vendor : Baxter Equipment : Welch Allyn Connex Spot Monitor CSM Vulnerability : Use of Default Cryptographic Key 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to modify device...

Baxter Welch Allyn Configuration Tool

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.4 ATTENTION : Exploitable remotely Vendor : Baxter Equipment : Welch Allyn Configuration Tool Vulnerability : Insufficiently Protected Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could lead to the unintended exposure of...

Hillrom Medical Device Management

1. EXECUTIVE SUMMARY CVSS v3 7.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hillrom Medical. Welch Allyn, and ELI are registered trademarks of Baxter International, Inc., or its subsidiaries. Equipment: Welch Allyn medical devices Vulnerabilities: Use of Hard-coded Password,...

Hillrom Welch Allyn ELI 访问控制错误漏洞

The Hillrom Welch Allyn ELI is a series of resting electrocardiographs from Hillrom, Inc. An Access Control Error vulnerability exists in Hillrom Welch Allyn ELI that stems from not restricting or incorrectly restricting access to resources by unauthorized actors. The following products and...

Hillrom Welch Allyn ELI 安全漏洞

The Hillrom Welch Allyn ELI is a series of resting electrocardiographs from Hillrom USA. A security vulnerability exists in the Hillrom Welch Allyn ELI that stems from the presence of hard-coded passwords. The following products and versions are affected: Welch Allyn ELI 380 Resting...

CVE-2021-43935 ICSMA-21-343-01 Hillrom Welch Allyn Cardio Products

The impacted products, when configured to use SSO, are affected by an improper authentication vulnerability. This vulnerability allows the application to accept manual entry of any active directory AD account provisioned in the application without supplying a password, resulting in access to the...

CISA Releases Security Advisory for Hillrom Welch Allyn Cardiology Products

CISA has released an Industrial Controls Systems Medical Advisory ICSMA detailing a vulnerability in multiple Hillrom Welch Allyn cardiology products. An attacker could exploit this vulnerability to take control of an affected system. CISA encourages technicians and administrators to review...

Hillrom Welch Allyn CardioProducts 授权问题漏洞

Hillrom Welch Allyn CardioProducts is a comprehensive cardiopulmonary data management system from Hillrom USA that works the way you do, allowing you to transform any computer or laptop into an efficient diagnostic solution. A security vulnerability exists in Hillrom Welch Allyn CardioProducts,...