The firmware update package for the wireless card is not properly signed and can be modified.
5.7CVSS
5.7AI Score
0.0004EPSS
The configuration from the PCU can be modified without authentication using physical connection to the PCU.
6.8CVSS
6.5AI Score
0.001EPSS
The data flowing between the PCU and its modules is insecure. A threat actor with physical access could potentially read or modify data by attaching a specially crafted device while an infusion is running.
6.1CVSS
6AI Score
0.001EPSS