Lucene search
K

5 matches found

The Hacker News
The Hacker News
added 2025/01/31 1:10 p.m.24 views

CISA and FDA Warn of Critical Backdoor in Contec CMS8000 Patient Monitors

The U.S. Cybersecurity and Infrastructure Security Agency CISA and the Food and Drug Administration FDA have issued alerts about the presence of hidden functionality in Contec CMS8000 patient monitors and Epsimed MN-120 patient monitors. The vulnerability, tracked as CVE-2025-0626 , carries a CVS...

9.3CVSS7.7AI score0.01276EPSS
Exploits0
Circl
Circl
added 2025/01/30 6:23 p.m.5 views

CVE-2025-0683

creationtimestamp| type| source ---|---|--- 2025-01-30 18:23:26+00:00| seen| https://infosec.exchange/users/cve/statuses/113918699513994287 2025-01-30 22:30:06+00:00| seen| https://bsky.app/profile/mytechnotalent.bsky.social/post/3lgyjvwampk2s 2025-01-30 22:38:34+00:00| seen|...

8.2CVSS7.9AI score0.00763EPSS
Exploits0References9
CVE
CVE
added 2025/01/30 6:17 p.m.64 views

CVE-2025-0683

The CVE-2025-0683 entry affects Contec Health CMS8000 Patient Monitor. In its default configuration, it transmits plain-text patient data to a hard-coded public IP address, enabling potential data leakage to any device on that IP and enabling MITM-like interception. Public advisories (CISA ICS wa...

8.2CVSS6AI score0.00763EPSS
In wildExploits0References4
Cvelist
Cvelist
added 2025/01/30 6:17 p.m.23 views

CVE-2025-0683 Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Contec Health CMS8000 Patient Monitor

In its default configuration, Contec Health CMS8000 Patient Monitor transmits plain-text patient data to a hard-coded public IP address when a patient is hooked up to the monitor. This could lead to a leakage of confidential patient data to any device with that IP address or an attacker in a...

8.2CVSS0.00763EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/30 6:17 p.m.11 views

CVE-2025-0683 Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Contec Health CMS8000 Patient Monitor

In its default configuration, Contec Health CMS8000 Patient Monitor transmits plain-text patient data to a hard-coded public IP address when a patient is hooked up to the monitor. This could lead to a leakage of confidential patient data to any device with that IP address or an attacker in a...

8.2CVSS5.8AI score0.00763EPSS
Exploits0References2
Rows per page
Query Builder