Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hospira vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2014-5401
Hospira MedNet software version 5.8 and prior uses vulnerable versions of the JBoss Enterprise Application Platform software that may allow unauthenticated users to execute arbitrary code on the target system. Hospira has developed a new version of the MedNet software, MedNet 6.1...
Hospira Mednet
5
CVSSv2
CVE-2015-1012
Wireless keys are stored in plain text on version 5 of the Hospira LifeCare PCA Infusion System. According to Hospira, version 3 of the LifeCare PCA Infusion System is not indicated for wireless use, is not shipped with wireless capabilities, and should not be modified to be used...
Pfizer Lifecare Pca Infusion System Firmware
10
CVSSv2
CVE-2015-3956
Hospira Plum A+ Infusion System version 13.4 and prior, Plum A+3 Infusion System version 13.6 and prior, and Symbiq Infusion System, version 3.13 and prior accept drug libraries, firmware updates, pump commands, and unauthorized configuration changes from unauthenticated devices ...
Pifzer Plum A\\+ Infusion System Firmware
Pifzer Plum A\\+3 Infusion System Firmware
Pifzer Symbiq Infusion System Firmware
10
CVSSv2
CVE-2015-3954
Hospira Plum A+ Infusion System version 13.4 and prior, Plum A+3 Infusion System version 13.6 and prior, and Symbiq Infusion System, version 3.13 and prior give unauthenticated users root privileges on Port 23/TELNET by default. An unauthorized user could issue commands to the pu...
Pifzer Plum A\\+ Infusion System Firmware
Pifzer Plum A\\+3 Infusion System Firmware
Pifzer Symbiq Infusion System Firmware
10
CVSSv2
CVE-2015-3953
Hard-coded accounts may be used to access Hospira Plum A+ Infusion System version 13.4 and prior, Plum A+3 Infusion System version 13.6 and prior, and Symbiq Infusion System, version 3.13 and prior. Hospira recommends that customers close Port 20/FTP and Port 23/TELNET on the aff...
Pifzer Plum A\\+ Infusion System Firmware
Pifzer Plum A\\+3 Infusion System Firmware
Pifzer Symbiq Infusion System Firmware
5
CVSSv2
CVE-2015-3952
Wireless keys are stored in plain text on Hospira Plum A+ Infusion System version 13.4 and prior, Plum A+3 Infusion System version 13.6 and prior, and Symbiq Infusion System, version 3.13 and prior. Hospira recommends that customers close Port 20/FTP and Port 23/TELNET on the aff...
Pifzer Plum A\\+ Infusion System Firmware
Pifzer Plum A\\+3 Infusion System Firmware
Pifzer Symbiq Infusion System Firmware
9
CVSSv2
CVE-2015-3965
Hospira Symbiq Infusion System 3.13 and previous versions allows remote authenticated users to trigger "unanticipated operations" by leveraging "elevated privileges" for an unspecified call to an incorrectly exposed function.
Pfizer Symbiq Infusion System Firmware
7.5
CVSSv2
CVE-2015-7909
Stack-based buffer overflow in Hospira Communication Engine (CE) prior to 1.2 in LifeCare PCA Infusion System 5.07, Plum A+ Infusion System 13.40, and Plum A+3 Infusion System 13.40 allows remote malicious users to cause a denial of service or possibly have unspecified other impa...
Hospira Communication Engine
Hospira Lifecare Pca Infusion System 5.0.7
4.6
CVSSv2
CVE-2015-3957
Hospira LifeCare PCA Infusion System prior to 7.0 stores private keys and certificates, which has unspecified impact and attack vectors.
Hospira Lifecare Pcainfusion Firmware
Hospira Lifecare Pca5 -
Hospira Lifecare Pca3 -
10
CVSSv2
CVE-2015-3955
Stack-based buffer overflow in Hospira LifeCare PCA Infusion System 5.0 and previous versions, and possibly other versions, allows remote malicious users to execute arbitrary code via unspecified vectors.
Hospira Lifecare Pcainfusion Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »