Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Hospira LifeCare PCA Infusion System
Vulnerability Description
The Hospira LifeCare PCA Infusion System before 7.0 does not validate network traffic associated with sending a (1) drug library, (2) software update, or (3) configuration change, which allows remote attackers to modify settings or medication data via packets on the (a) TELNET, (b) HTTP, (c) HTTPS, or (d) UPNP port. NOTE: this issue might overlap CVE-2015-3459.
CVSS Information
N/A
Vulnerability Type
对数据真实性的验证不充分
Vulnerability Title
Hospira LifeCare PCA Infusion System 权限许可和访问控制漏洞
Vulnerability Description
Hospira LifeCare PCA Infusion System是美国赫升瑞(Hospira)公司的一套智能输液系统。 Hospira LifeCare PCA Infusion System 7.0之前版本中存在安全漏洞,该漏洞源于程序没有验证网络流量(与发送药物库、软件升级和配置改变相关)。远程攻击者可通过向TELNET、HTTP、HTTPS或UPNP端口发送数据包利用该漏洞修改设置或药物数据。
CVSS Information
N/A
Vulnerability Type
N/A