Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-3989

Malware in sbrugna...

7.8CVSS8.2AI score0.02612EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-1155

Malware in sbrugna...

5CVSS7.6AI score0.02228EPSS
Exploits0References3
NVD
NVD
added 2019/03/25 7:29 p.m.17 views

CVE-2015-1012

Wireless keys are stored in plain text on version 5 of the Hospira LifeCare PCA Infusion System. According to Hospira, version 3 of the LifeCare PCA Infusion System is not indicated for wireless use, is not shipped with wireless capabilities, and should not be modified to be used in a wireless...

7.5CVSS7.5AI score0.00771EPSS
Exploits0References1
CVE
CVE
added 2019/03/25 6:20 p.m.44 views

CVE-2015-1012

The CVE-2015-1012 entry concerns the Hospira LifeCare PCA Infusion System. Vulnerabilities include cleartext storage of wireless network keys and hardcoded credentials, with multiple related issues (e.g., improper authorization, insufficient verification of data authenticity) that could enable un...

7.5CVSS7.5AI score0.00771EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2016/01/22 11:59 a.m.12 views

Stack overflow

Stack-based buffer overflow in Hospira Communication Engine CE before 1.2 in LifeCare PCA Infusion System 5.07, Plum A+ Infusion System 13.40, and Plum A+3 Infusion System 13.40 allows remote attackers to cause a denial of service or possibly have unspecified other impact via traffic on TCP port...

7.5CVSS8.6AI score0.01112EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2016/01/22 11:0 a.m.44 views

CVE-2015-7909

Hospira LifeCare PCA Infusion System (v5.07) and Plum A+/A+3 Infusion Systems (CE prior to v1.2) are affected by a stack-based buffer overflow in the Hospira Communication Engine (CE) exposed on TCP port 5000. The vulnerability enables a remote attacker to cause a denial of service (and potential...

7.5CVSS8AI score0.01112EPSS
Exploits0References1Affected Software2
NVD
NVD
added 2015/07/06 7:59 p.m.18 views

CVE-2015-3955

Stack-based buffer overflow in Hospira LifeCare PCA Infusion System 5.0 and earlier, and possibly other versions, allows remote attackers to execute arbitrary code via unspecified vectors...

10CVSS8.6AI score0.0675EPSS
Exploits0References3
Prion
Prion
added 2015/07/06 7:59 p.m.14 views

Hardcoded credentials

Hospira LifeCare PCA Infusion System before 7.0 has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors...

5CVSS7.1AI score0.02228EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2015/07/06 7:59 p.m.12 views

Stack overflow

Stack-based buffer overflow in Hospira LifeCare PCA Infusion System 5.0 and earlier, and possibly other versions, allows remote attackers to execute arbitrary code via unspecified vectors...

10CVSS8.8AI score0.0675EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2015/07/06 7:59 p.m.16 views

Design/Logic Flaw

The Hospira LifeCare PCA Infusion System before 7.0 does not validate network traffic associated with sending a 1 drug library, 2 software update, or 3 configuration change, which allows remote attackers to modify settings or medication data via packets on the a TELNET, b HTTP, c HTTPS, or d UPNP...

9.3CVSS7AI score0.05162EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2015/07/06 7:59 p.m.15 views

Design/Logic Flaw

Hospira LifeCare PCA Infusion System before 7.0 stores private keys and certificates, which has unspecified impact and attack vectors...

4.6CVSS7.2AI score0.00544EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2015/07/06 7:10 p.m.20 views

CVE-2015-3958

Hospira LifeCare PCA Infusion System 5.0 and earlier, and possibly other versions, allows remote attackers to cause a denial of service forced manual reboot via a flood of TCP packets...

6.7AI score0.02612EPSS
Exploits0References3
Cvelist
Cvelist
added 2015/07/06 7:10 p.m.20 views

CVE-2015-3955

Stack-based buffer overflow in Hospira LifeCare PCA Infusion System 5.0 and earlier, and possibly other versions, allows remote attackers to execute arbitrary code via unspecified vectors...

8.2AI score0.0675EPSS
Exploits0References3
NVD
NVD
added 2015/04/29 11:59 p.m.13 views

CVE-2015-3459

The communication module on the Hospira LifeCare PCA Infusion System before 7.0 does not require authentication for root TELNET sessions, which allows remote attackers to modify the pump configuration via unspecified commands...

10CVSS7.6AI score0.05162EPSS
Exploits0References8
CVE
CVE
added 2015/04/29 11:0 p.m.53 views

CVE-2015-3459

Hospira LifeCare PCA Infusion System (pre-7.0) has an unauthenticated root Telnet access in the device’s communication module, allowing remote modification of pump configuration. Connected sources confirm affected products include LifeCare PCA Infusion System versions 5.0 and older, with exploita...

10CVSS6.9AI score0.05162EPSS
Exploits0References8Affected Software3
Rows per page
Query Builder