Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bostonscientific vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv3
CVE-2021-38398
The affected device uses off-the-shelf software components that contain unpatched vulnerabilities. A malicious attacker with physical access to the affected device could exploit these vulnerabilities.
Bostonscientific Zoom Latitude Programming System Model 3120 Firmware -
Bostonscientific Zoom Latitude Pogrammer\\/recorder\\/monitor 3120 Firmware
4.6
CVSSv3
CVE-2017-14012
Boston Scientific ZOOM LATITUDE PRM Model 3120 does not encrypt PHI at rest. CVSS v3 base score: 4.6; CVSS vector string: AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.
Bostonscientific Zoom Latitude Prm 3120 Firmware -
4.6
CVSSv3
CVE-2017-14014
Boston Scientific ZOOM LATITUDE PRM Model 3120 uses a hard-coded cryptographic key to encrypt PHI prior to having it transferred to removable media. CVSS v3 base score: 4.6; CVSS vector string: AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.
Bostonscientific Zoom Latitude Prm 3120 Firmware -
6.8
CVSSv3
CVE-2021-38396
The programmer installation utility does not perform a cryptographic authenticity or integrity checks of the software on the flash drive. An attacker could leverage this weakness to install unauthorized software using a specially crafted USB.
Bostonscientific Zoom Latitude Pogrammer\\/recorder\\/monitor 3120 Firmware
6.8
CVSSv3
CVE-2021-38400
An attacker with physical access to Boston Scientific Zoom Latitude Model 3120 can remove the hard disk drive or create a specially crafted USB to extract the password hash for brute force reverse engineering of the system password.
Bostonscientific Zoom Latitude Pogrammer\\/recorder\\/monitor 3120 Firmware
7.6
CVSSv3
CVE-2021-38392
A skilled attacker with physical access to the affected device can gain access to the hard disk drive of the device to change the telemetry region and could use this setting to interrogate or program an implantable device in any region in the world.
Bostonscientific Zoom Latitude Pogrammer\\/recorder\\/monitor 3120 Firmware
6.4
CVSSv3
CVE-2021-38394
An attacker with physical access to the device can extract the binary that checks for the hardware key and reverse engineer it, which could be used to create a physical duplicate of a valid hardware key. The hardware key allows access to special settings when inserted.
Bostonscientific Zoom Latitude Pogrammer\\/recorder\\/monitor 3120 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started