Lucene search
K

58 matches found

Positive Technologies
Positive Technologies
added 2024/11/14 12:0 a.m.7 views

PT-2024-33302 · Unknown · Ventilator Software Tools

Name of the Vulnerable Software and Affected Versions: Ventilator software tools affected versions not specified Description: The software tools used by service personnel to test and calibrate the ventilator do not support user authentication. An attacker with access to the Service PC where the...

10CVSS6.3AI score0.00676EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/11/14 12:0 a.m.7 views

PT-2024-33303 · Unknown · Service Pc +1

Name of the Vulnerable Software and Affected Versions: Ventilator and Service PC affected versions not specified Description: The ventilator and the Service PC lack sufficient audit logging capabilities, making it difficult to detect malicious activity and conduct forensic examinations. An attack...

10CVSS6.4AI score0.00612EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/11/14 12:0 a.m.4 views

Baxter Life2000 安全漏洞

The Baxter Life2000 is a mask-less non-invasive ventilator from Baxter. A security vulnerability exists in Baxter Life2000 version 06.08.00.00 and prior versions, which stems from the lack of sufficient audit logging functionality to detect malicious activity and perform subsequent forensic...

10CVSS6.2AI score0.00612EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/14 12:0 a.m.6 views

PT-2024-39873 · Unknown · Ventilator

Name of the Vulnerable Software and Affected Versions: Ventilator affected versions not specified Description: The issue allows for an unlimited number of failed login attempts with the Clinician Password or the Serial Number Clinician Password. This enables an attacker to perform a brute-force...

9.3CVSS6.5AI score0.00177EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/11/14 12:0 a.m.6 views

PT-2024-33306 · Unknown · Ventilator

Name of the Vulnerable Software and Affected Versions: Ventilator affected versions not specified Description: The Clinician Password and Serial Number Clinician Password are hard-coded into the ventilator in plaintext form. This could allow an attacker to obtain the password off the ventilator a...

9.3CVSS6.8AI score0.00217EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/11/14 12:0 a.m.10 views

PT-2024-33305 · Unknown · Ventilator

Name of the Vulnerable Software and Affected Versions: Ventilator affected versions not specified Description: The ventilator's microcontroller lacks memory protection, allowing an attacker to connect to the internal JTAG interface and read or write to flash memory using an off-the-shelf debuggin...

9.3CVSS6.5AI score0.00214EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/11/08 12:0 a.m.6 views

PT-2022-21770 · Mitsubishi · Mitsubishi Electric Consumer Electronics Products

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric consumer electronics products affected versions not specified Description: A cross-site scripting vulnerability in Mitsubishi Electric consumer electronics products allows a remote unauthenticated attacker to execute a...

6.1CVSS6.1AI score0.00837EPSS
Exploits0References6
NVD
NVD
added 2021/03/15 10:15 p.m.22 views

CVE-2020-27282

In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, an XML validation vulnerability in the ventilator allows privileged attackers with physical access to render the device persistently unusable by uploading specially crafted configuration files...

4.3CVSS0.00253EPSS
Exploits0References1
OSV
OSV
added 2021/03/15 10:15 p.m.4 views

CVE-2020-27282

In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, an XML validation vulnerability in the ventilator allows privileged attackers with physical access to render the device persistently unusable by uploading specially crafted configuration files...

4.3CVSS5.8AI score0.00253EPSS
Exploits0References1
OSV
OSV
added 2021/03/15 10:15 p.m.3 views

CVE-2020-27290

In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, an information disclosure vulnerability in the ventilator allows attackers with physical access to the configuration interface's logs to get valid checksums for tampered configuration files...

4.3CVSS5.8AI score0.00283EPSS
Exploits0References1
OSV
OSV
added 2021/03/15 10:15 p.m.4 views

CVE-2020-27278

In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, hard-coded credentials in the ventilator allow attackers with physical access to obtain admin privileges for the device’s configuration interface...

5.2CVSS5.8AI score0.00272EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/03/15 9:22 p.m.30 views

CVE-2020-27290

In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, an information disclosure vulnerability in the ventilator allows attackers with physical access to the configuration interface's logs to get valid checksums for tampered configuration files...

4.3AI score0.00283EPSS
Exploits0References1
CVE
CVE
added 2021/03/15 9:21 p.m.66 views

CVE-2020-27282

The connected documents provide concrete details for CVE-2020-27282 affecting Hamilton Medical AG T1-Ventilator (Versions 2.2.3 and earlier). The vulnerability is an XML validation weakness in the ventilator’s configuration interface that, if exploited by a user with physical access, can render t...

4.3CVSS4.3AI score0.00253EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/03/15 9:21 p.m.35 views

CVE-2020-27278

In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, hard-coded credentials in the ventilator allow attackers with physical access to obtain admin privileges for the device’s configuration interface...

5AI score0.00272EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/02/16 12:0 a.m.6 views

Hamilton-medical Hamilton-T1 Security Vulnerability

The Hamilton-medical Hamilton-T1 is an industrial control device from Hamilton-medical USA. The Hamilton-medical Hamilton-T1 combines the functionality of a full-featured ICU ventilator with the compactness and ruggedness required for transport. A security vulnerability exists in the...

4.3CVSS5.8AI score0.00253EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/02/16 12:0 a.m.8 views

Hamilton-medical Hamilton-T1 Trust Management Issues Vulnerability

The Hamilton-medical Hamilton-T1 is an industrial control device from Hamilton-medical USA. It combines the functionality of a full-featured ICU ventilator with the compactness and ruggedness required for transport Functionality. A trust management issue vulnerability exists in the Hamilton-medic...

5.2CVSS6.1AI score0.00272EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/02/16 12:0 a.m.8 views

Hamilton-medical Hamilton-T1 Information Disclosure Vulnerability

The Hamilton-medical Hamilton-T1 is an industrial control device from Hamilton-medical USA. It combines the functionality of a full-featured ICU ventilator with the compactness and ruggedness required for transport Features. An information disclosure vulnerability exists in the Hamilton-T1...

4.3CVSS5.8AI score0.00283EPSS
Exploits0References3
ICS
ICS
added 2021/02/16 12:0 a.m.51 views

Hamilton-T1

1. EXECUTIVE SUMMARY CVSS v3 4.3 ATTENTION: Low skill level to exploit Vendor: Hamilton Medical AG Equipment: Hamilton-T1 Vulnerabilities: Use of Hard-coded Credentials, Missing XML Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow attackers with physical...

5.2CVSS5.2AI score0.00283EPSS
Exploits0References5
Rows per page
Query Builder