3 matches found
CVE-2022-26392
CVE-2022-26392 is a format-string vulnerability in Baxter Spectrum WBM firmware (v16, v16D38, v17, v17D19, v20D29–v20D32) that is exploitable when the device runs in superuser mode and processes application messages. The issue can let an attacker read memory on the WBM via a Telnet/hostmessage co...
CVE-2022-26392 Format String vulnerability
The Baxter Spectrum WBM v16, v16D38 and Baxter Spectrum WBM v17, v17D19, v20D29 to v20D32 when in superuser mode is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive information...
Baxter Sigma Spectrum Infusion Pump (Update A)
1. EXECUTIVE SUMMARY --------- Begin Update A part 1 of 3 --------- CVSS v3 7.5 --------- End Update A part 1 of 3 --------- ATTENTION: Exploitable remotely Vendor: Baxter Equipment: Sigma and Baxter Spectrum Infusion Pumps Vulnerabilities: Missing Encryption of Sensitive Data, Use of Externally...