8 matches found
EUVD-2016-9203
Malware in sbrugna...
CVE-2015-3956
The CVE-2015-3956 family affects Hospira Plum A+ Infusion System (version 13.4 and earlier), Plum A+3 Infusion System (13.6 and earlier), and Symbiq Infusion System (3.13 and earlier). Affected devices accept drug libraries, firmware updates, pump commands, and unauthenticated configuration chang...
CVE-2016-8355
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. CADD-Solis Medication Safety Software grants an authenticated user elevated privileges on the SQL database, which would allow an authenticated user to modify drug libraries, add and...
Code injection
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. CADD-Solis Medication Safety Software grants an authenticated user elevated privileges on the SQL database, which would allow an authenticated user to modify drug libraries, add and...
CVE-2016-8355
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. CADD-Solis Medication Safety Software grants an authenticated user elevated privileges on the SQL database, which would allow an authenticated user to modify drug libraries, add and...
CVE-2016-8355
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. CADD-Solis Medication Safety Software grants an authenticated user elevated privileges on the SQL database, which would allow an authenticated user to modify drug libraries, add and...
CVE-2016-8355
The CVE-2016-8355 entry documents an elevation-of-privilege flaw in Smiths-Medical CADD-Solis Medication Safety Software (versions 1.0–3.1). An authenticated user can gain elevated privileges on the embedded SQL database, enabling modification of drug libraries, user management (add/delete users)...
Smiths Medical CADD-Solis Medication Safety Software Vulnerabilities
OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on November 1, 2016, and is being released to the NCCIC/ICS-CERT web site. Smiths Medical has reported two vulnerabilities in Smiths Medical’s CADD-Solis Medication Safety Software that were identified by Andrew...