16 matches found
EUVD-2020-19773
Malware in sbrugna...
EUVD-2020-19775
Malware in sbrugna...
CVE-2020-27262
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 A stored cross-site scripting XSS vulnerability exists in the affected products that allow an attacker to inject arbitrary web script or HTML via the filename parameter to multiple update endpoints of the administrative web...
CVE-2020-27260
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...
CVE-2020-27262
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 A stored cross-site scripting XSS vulnerability exists in the affected products that allow an attacker to inject arbitrary web script or HTML via the filename parameter to multiple update endpoints of the administrative web...
CVE-2020-27260
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...
CVE-2020-27260
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...
Design/Logic Flaw
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...
Cross site scripting
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 A stored cross-site scripting XSS vulnerability exists in the affected products that allow an attacker to inject arbitrary web script or HTML via the filename parameter to multiple update endpoints of the administrative web...
CVE-2020-27260
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected...
CVE-2020-27260
CVE-2020-27260 affects Innokas Yhtymä Oy Vital Signs Monitor VC150 (pre-1.7.15). The vuln is an HL7 v2.x injection in HL7 messages triggered by multiple parameters, exploitable by physically proximate attackers with a connected barcode reader. The CVSS v3 base score is 5.3 (NEIGHBOR, HIGH integri...
CVE-2020-27262
The CVE-2020-27262 issue affects Innokas Yhtymä Oy Vital Signs Monitor VC150, prior to Version 1.7.15. A stored cross-site scripting (XSS) vulnerability exists in the administrative web interface that allows an attacker to inject arbitrary web script or HTML via the filename parameter to multiple...
CVE-2020-27262
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 A stored cross-site scripting XSS vulnerability exists in the affected products that allow an attacker to inject arbitrary web script or HTML via the filename parameter to multiple update endpoints of the administrative web...
Innokas Medical Innokas Yhtyma Oy Vital Signs Monitor Cross-Site Scripting Vulnerability
Innokas Medical Innokas Yhtyma Oy Vital Signs Monitor is a monitor from Innokas Medical that measures blood pressure, body temperature, respiratory rate and pulse rate. A cross-site scripting vulnerability exists in Innokas Yhtyma Oy Vital Signs Monitor VC150 prior to Version 1.7.15, which allows...
Innokas Medical Innokas Yhtyma Oy Vital Signs Monitor Injection Vulnerability
Innokas Medical Innokas Yhtyma Oy Vital Signs Monitor is a monitor from Innokas Medical that measures blood pressure, body temperature, respiratory rate and pulse rate. Innokas Yhtyma Oy Vital Signs Monitor VC150 to Version 1.7.15 suffers from injection vulnerabilities that allow an attacker to...
Innokas Yhtymä Oy Vital Signs Monitor
1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Innokas Yhtymä Oy Equipment: Vital Signs Monitor VC150 Vulnerabilities: Cross-site Scripting, Improper Neutralization of Special Elements in Output Used by a Downstream Component 2. RISK EVALUATION...