Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hospira vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2015-3958
Hospira LifeCare PCA Infusion System 5.0 and previous versions, and possibly other versions, allows remote malicious users to cause a denial of service (forced manual reboot) via a flood of TCP packets.
Hospira Lifecare Pcainfusion Firmware
9.3
CVSSv2
CVE-2014-5406
The Hospira LifeCare PCA Infusion System prior to 7.0 does not validate network traffic associated with sending a (1) drug library, (2) software update, or (3) configuration change, which allows remote malicious users to modify settings or medication data via packets on the (a) T...
Hospira Lifecare Pcainfusion Firmware
5
CVSSv2
CVE-2015-1011
Hospira LifeCare PCA Infusion System prior to 7.0 has hardcoded credentials, which makes it easier for remote malicious users to obtain access via unspecified vectors.
Hospira Lifecare Pcainfusion Firmware
10
CVSSv2
CVE-2015-3459
The communication module on the Hospira LifeCare PCA Infusion System prior to 7.0 does not require authentication for root TELNET sessions, which allows remote malicious users to modify the pump configuration via unspecified commands.
Hospira Lifecare Pcainfusion Firmware
Hospira Lifecare Pca5 -
Hospira Lifecare Pca3 -
9
CVSSv2
CVE-2014-5405
Hospira MedNet prior to 6.1 uses a hardcoded cleartext password to control SQL database authorization, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password.
Hospira Mednet
2.1
CVSSv2
CVE-2014-5400
The installation component in Hospira MedNet prior to 6.1 places cleartext credentials in configuration files, which allows local users to obtain sensitive information by reading a file.
Hospira Mednet
5
CVSSv2
CVE-2014-5403
Hospira MedNet prior to 6.1 uses hardcoded cryptographic keys for protection of data transmission from infusion pumps, which allows remote malicious users to obtain sensitive information by sniffing the network.
Hospira Mednet
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2