Medfusion 4000 Wireless Syringe Infusion Pump Security Vulnerabilities and Issues — Medfusion 4000 Wireless Syringe Infusion Pump CVE List

Lucene search

Smiths-medicalMedfusion 4000 Wireless Syringe Infusion Pump

3 matches found

CVE•added 2018/02/15 10:29 a.m.•100 views

CVE-2017-12718

A Classic Buffer Overflow issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. A third-party component used in the pump does not verify input buffer size prior to copying, leading to a buffer overflow, allowing remote code execution on the...

8.1CVSS8.3AI score0.26712EPSS

Web

CVE•added 2018/02/15 10:29 a.m.•50 views

CVE-2017-12724

A Use of Hard-coded Credentials issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. The FTP server on the pump contains hardcoded credentials, which are not fully initialized. The FTP server is only accessible if the pump is configured to...

8.1CVSS8AI score0.00484EPSS

CVE•added 2018/02/15 10:29 a.m.•44 views

CVE-2017-12720

An Improper Access Control issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. The FTP server on the pump does not require authentication if the pump is configured to allow FTP connections.

8.1CVSS8.1AI score0.02366EPSS