14 matches found
EUVD-2016-9203
Malware in sbrugna...
CVE-2016-8358
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. The affected software does not verify the identities at communication endpoints, which may allow a man-in-the-middle attacker to gain access to the communication channel between...
CVE-2016-8355
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. CADD-Solis Medication Safety Software grants an authenticated user elevated privileges on the SQL database, which would allow an authenticated user to modify drug libraries, add and...
CVE-2016-8355
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. CADD-Solis Medication Safety Software grants an authenticated user elevated privileges on the SQL database, which would allow an authenticated user to modify drug libraries, add and...
CVE-2016-8358
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. The affected software does not verify the identities at communication endpoints, which may allow a man-in-the-middle attacker to gain access to the communication channel between...
CVE-2016-8358
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. The affected software does not verify the identities at communication endpoints, which may allow a man-in-the-middle attacker to gain access to the communication channel between...
Design/Logic Flaw
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. The affected software does not verify the identities at communication endpoints, which may allow a man-in-the-middle attacker to gain access to the communication channel between...
CVE-2016-8358
CVE-2016-8358 concerns Smiths Medical CADD-Solis Medication Safety Software (versions 1.0, 2.0, 3.0, 3.1). The root issue is that the software does not verify identities at communication endpoints, enabling a potential man-in-the-middle to access the communication channel between endpoints. The v...
CVE-2016-8355
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. CADD-Solis Medication Safety Software grants an authenticated user elevated privileges on the SQL database, which would allow an authenticated user to modify drug libraries, add and...
CVE-2016-8358
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. The affected software does not verify the identities at communication endpoints, which may allow a man-in-the-middle attacker to gain access to the communication channel between...
CVE-2016-8355
The CVE-2016-8355 entry documents an elevation-of-privilege flaw in Smiths-Medical CADD-Solis Medication Safety Software (versions 1.0–3.1). An authenticated user can gain elevated privileges on the embedded SQL database, enabling modification of drug libraries, user management (add/delete users)...
Smiths-Medical CADD-Solis Medication Safety Software Security Bypass Vulnerability
Smiths-Medical, headquartered in Plymouth, Minnesota, is a subsidiary of Smiths Group, a company based in the U.K. CADD-Solis drug safety software, is an application used to set dose limits for infusion pumps. A security bypass vulnerability exists in Smiths-Medical CADD-Solis Medication Safety...
Smiths-Medical CADD-Solis Medication Safety Software Elevation of Privilege Vulnerability
Smiths-Medical, headquartered in Plymouth, Minnesota, is a subsidiary of Smiths Group, a company based in the U.K. CADD-Solis drug safety software, is an application used to set dose limits for infusion pumps. An elevation of privilege vulnerability exists in Smiths-Medical CADD-Solis Medication...
Smiths Medical CADD-Solis Medication Safety Software Vulnerabilities
OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on November 1, 2016, and is being released to the NCCIC/ICS-CERT web site. Smiths Medical has reported two vulnerabilities in Smiths Medical’s CADD-Solis Medication Safety Software that were identified by Andrew...