2 matches found
CVE-2017-12724
A Use of Hard-coded Credentials issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. The FTP server on the pump contains hardcoded credentials, which are not fully initialized. The FTP server is only accessible if the pump is configured ...
CVE-2017-12724
CVE-2017-12724 affects Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump (firmware versions 1.1, 1.5, 1.6). The vulnerability stems from hard-coded credentials on the pump’s FTP server, which is only accessible when FTP is enabled, enabling unauthorized access to the device. The ICS-CE...