3 matches found
CVE-2020-27260
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...
CVE-2020-27260
CVE-2020-27260 affects Innokas Yhtymä Oy Vital Signs Monitor VC150 (pre-1.7.15). The vuln is an HL7 v2.x injection in HL7 messages triggered by multiple parameters, exploitable by physically proximate attackers with a connected barcode reader. The CVSS v3 base score is 5.3 (NEIGHBOR, HIGH integri...
Innokas Yhtymä Oy Vital Signs Monitor
1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Innokas Yhtymä Oy Equipment: Vital Signs Monitor VC150 Vulnerabilities: Cross-site Scripting, Improper Neutralization of Special Elements in Output Used by a Downstream Component 2. RISK EVALUATION...