Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

BDU FSTEC
BDU FSTECadded 2025/02/04 12:0 a.m.4 views

The vulnerability of the microprogrammed software of the CMS8000 Patient Monitor and Epsimed MN-120 medical devices lies in the fact that they send requests to a rigidly encoded external IP address. This allows attackers to circumvent security restrictions and upload or re-upload files onto the devices.

The vulnerability of the microprogrammed software in medical monitoring devices such as CMS8000 Patient Monitor and Epsimed MN-120 lies in the fact that requests are sent to a rigidly encoded external IP address. Exploiting this vulnerability allows an attacker to bypass security restrictions and...

7.6CVSS8.1AI score0.01079EPSS
Exploits0References7
BDU FSTEC
BDU FSTECadded 2025/02/04 12:0 a.m.4 views

The vulnerability of the microprogrammed software of medical monitoring devices such as CMS8000 Patient Monitor and Epsimed MN-120 arises from the fact that the output of operations may escape the buffer in memory. This allows an intruder to gain unauthorized access to protected information, execute arbitrary codes, or gain full control over the device.

The vulnerability of the microprogrammed software of the CMS8000 Patient Monitor and Epsimed MN-120 medical devices related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protecte...

10CVSS8.7AI score0.01189EPSS
Exploits0References6
The Hacker News
The Hacker Newsadded 2025/01/31 1:10 p.m.24 views

CISA and FDA Warn of Critical Backdoor in Contec CMS8000 Patient Monitors

The U.S. Cybersecurity and Infrastructure Security Agency CISA and the Food and Drug Administration FDA have issued alerts about the presence of hidden functionality in Contec CMS8000 patient monitors and Epsimed MN-120 patient monitors. The vulnerability, tracked as CVE-2025-0626 , carries a CVS...

9.3CVSS7.7AI score0.01189EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2025/01/21 12:0 a.m.5 views

PT-2025-3988 · Epsimed +1 · Epsimed Mn-120 Patient Monitor +1

Name of the Vulnerable Software and Affected Versions: Contec Health CMS8000 Patient Monitor affected versions not specified Epsimed MN-120 patient monitor affected versions not specified Description: The affected product sends out remote access requests to a hard-coded IP address, bypassing...

7.7CVSS9.5AI score0.01079EPSS
Exploits0References32
Positive Technologies
Positive Technologiesadded 2024/12/05 12:0 a.m.5 views

PT-2025-1790 · Epsimed +1 · Epsimed Mn-120 +1

Name of the Vulnerable Software and Affected Versions: Contec Health CMS8000 Patient Monitor versions smart3250-2.6.27-wlan2.1.7.cramfs Contec Health CMS8000 Patient Monitor versions CMS7.820.075.08/0.740.75 Contec Health CMS8000 Patient Monitor versions CMS7.820.120.01/0.930.95 Epsimed MN-120...

9.8CVSS9.6AI score0.01189EPSS
Exploits0References19
Rows per page
Query Builder