18 matches found
EUVD-2020-7475
Malware in sbrugna...
CVE-2020-15485
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The onboard Flash memory stores data in cleartext, without integrity protection against tampering...
CVE-2020-15484
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The internal storage of the underlying Linux system stores data in cleartext, without integrity protection against tampering...
CVE-2020-15482
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The device enables an unencrypted TELNET service by default, with a blank password for the admin account. This allows an attacker to gain root access to the device over the local network...
CVE-2020-15483
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The physical UART debug port provides a shell, without requiring a password, with complete access...
CVE-2020-15485
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The onboard Flash memory stores data in cleartext, without integrity protection against tampering...
Design/Logic Flaw
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The onboard Flash memory stores data in cleartext, without integrity protection against tampering...
CVE-2020-15485
The CVE-2020-15485 issue affects Nescomed Multipara Monitor M1000 devices, where the onboard Flash memory stores data in cleartext without integrity protection against tampering. This impacts confidentiality (data exposed) but not integrity/availability of the device according to the provided det...
CVE-2020-15485
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The onboard Flash memory stores data in cleartext, without integrity protection against tampering...
CVE-2020-15482
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The device enables an unencrypted TELNET service by default, with a blank password for the admin account. This allows an attacker to gain root access to the device over the local network...
CVE-2020-15483
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The physical UART debug port provides a shell, without requiring a password, with complete access...
Default credentials
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The device enables an unencrypted TELNET service by default, with a blank password for the admin account. This allows an attacker to gain root access to the device over the local network...
CVE-2020-15482
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The device enables an unencrypted TELNET service by default, with a blank password for the admin account. This allows an attacker to gain root access to the device over the local network...
CVE-2020-15482
CVE-2020-15482 concerns Nescomed Multipara Monitor M1000 devices, where an unencrypted TELNET service is enabled by default with a blank admin password, enabling an attacker on the local network to gain root access. The available connected sources corroborate the issue across multiple references ...
CVE-2020-15483
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The physical UART debug port provides a shell, without requiring a password, with complete access...
CVE-2020-15484
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The internal storage of the underlying Linux system stores data in cleartext, without integrity protection against tampering...
CVE-2020-15484
The CVE-2020-15484 issue affects Nescomed Multipara Monitor M1000 devices, where the underlying Linux system stores data in cleartext with no integrity protection. The risk is limited to data confidentiality and tampering protection within the device’s storage; the reports do not provide exploit ...
PT-2020-14450 · Nescomed · Nescomed Multipara Monitor M1000
Name of the Vulnerable Software and Affected Versions: Nescomed Multipara Monitor M1000 devices affected versions not specified Description: An issue was discovered where the physical UART debug port on the devices provides a shell without requiring a password, giving complete access...