Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
spectrum control vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-12047
The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24), when used with a Baxter Spectrum v8.x (model 35700BAX2) in a factory-default wireless configuration enables an FTP service with hard-coded credentials.
Baxter Sigma Spectrum Infusion System Firmware 8.0
6.5
CVSSv3
CVE-2022-26392
The Baxter Spectrum WBM (v16, v16D38) and Baxter Spectrum WBM (v17, v17D19, v20D29 to v20D32) when in superuser mode is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive information.
Baxter Spectrum Wireless Battery Module Firmware 16
Baxter Spectrum Wireless Battery Module Firmware 16d38
Baxter Spectrum Wireless Battery Module Firmware 17
Baxter Spectrum Wireless Battery Module Firmware 17d19
Baxter Spectrum Wireless Battery Module Firmware
Baxter Sigma Spectrum 35700bax Firmware -
Baxter Sigma Spectrum 35700bax2 Firmware -
Baxter Baxter Spectrum Iq 35700bax3 Firmware -
4.2
CVSSv3
CVE-2022-26390
The Baxter Spectrum Wireless Battery Module (WBM) stores network credentials and PHI (only applicable to Spectrum IQ pumps using auto programming) in unencrypted form. An attacker with physical access to a device that hasn't had all data and settings erased may be able to ex...
Baxter Spectrum Wireless Battery Module Firmware
Baxter Spectrum Wireless Battery Module Firmware 16
Baxter Spectrum Wireless Battery Module Firmware 16d38
Baxter Spectrum Wireless Battery Module Firmware 17
Baxter Spectrum Wireless Battery Module Firmware 17d19
Baxter Sigma Spectrum 35700bax Firmware -
Baxter Sigma Spectrum 35700bax2 Firmware -
Baxter Baxter Spectrum Iq 35700bax3 Firmware -
9.8
CVSSv3
CVE-2020-12040
Sigma Spectrum Infusion System v's6.x (model 35700BAX) and Baxter Spectrum Infusion System Version(s) 8.x (model 35700BAX2) at the application layer uses an unauthenticated clear-text communication channel to send and receive system status and operational data. This could al...
Baxter Sigma Spectrum Infusion System Firmware
Baxter Sigma Spectrum Infusion System Firmware 8.0
8.8
CVSSv3
CVE-2022-22472
IBM Spectrum Protect Plus Container Backup and Restore (10.1.5 up to and including 10.1.10.2 for Kubernetes and 10.1.7 up to and including 10.1.10.2 for Red Hat OpenShift) could allow a remote malicious user to bypass IBM Spectrum Protect Plus role based access control restrictio...
Ibm Spectrum Protect Plus Container Backup And Restore
9.8
CVSSv3
CVE-2020-12043
The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24) when configured for wireless networking the FTP service operating on the WBM remains operational until the WBM is rebooted.
Baxter Sigma Spectrum Infusion System Firmware 8.0
5.4
CVSSv3
CVE-2022-26394
The Baxter Spectrum WBM does not perform mutual authentication with the gateway server host. This may allow an malicious user to perform a man in the middle attack that modifies parameters making the network connection fail.
Baxter Spectrum Wireless Battery Module Firmware 16
Baxter Spectrum Wireless Battery Module Firmware 16d38
Baxter Spectrum Wireless Battery Module Firmware 17
Baxter Spectrum Wireless Battery Module Firmware 17d19
Baxter Spectrum Wireless Battery Module Firmware
Baxter Sigma Spectrum 35700bax Firmware -
Baxter Sigma Spectrum 35700bax2 Firmware -
Baxter Baxter Spectrum Iq 35700bax3 Firmware -
8.1
CVSSv3
CVE-2022-26393
The Baxter Spectrum WBM is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive information or cause a Denial of Service (DoS) on the WBM.
Baxter Spectrum Wireless Battery Module Firmware 20d29
Baxter Sigma Spectrum 35700bax Firmware -
Baxter Sigma Spectrum 35700bax2 Firmware -
Baxter Baxter Spectrum Iq 35700bax3 Firmware -
7.5
CVSSv3
CVE-2022-38391
IBM Spectrum Control 5.4 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 233982.
Ibm Spectrum Control 5.4.0.0
7.8
CVSSv3
CVE-2020-8252
The implementation of realpath in libuv < 10.22.1, < 12.18.4, and < 14.9.0 used within Node.js incorrectly determined the buffer size which can result in a buffer overflow if the resolved path is longer than 256 bytes.
Nodejs Node.js
Opensuse Leap 15.2
Fedoraproject Fedora 33
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »