Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Baxter ExactaMix EM 2400 & EM 1200, Versions ExactaMix EM2400 Versions 1.10, 1.11, 1.13, 1.14, ExactaMix EM1200 Versions 1.1, 1.2, 1.4, 1.5, Baxter ExactaMix EM 2400 Versions 1.10, 1.11, and 1.13, and ExactaMix EM1200 Versions 1.1, 1.2, and 1.4 have hard-coded administrative account credentials for the ExactaMix application. Successful exploitation of this vulnerability may allow an attacker with physical access to gain unauthorized access to view/update system configuration or data. This could impact confidentiality and integrity of the system and risk exposure of sensitive information including PHI.
CVSS Information
N/A
Vulnerability Type
使用硬编码的口令
Vulnerability Title
Baxter ExactaMix EM2400和EM1200 信任管理问题漏洞
Vulnerability Description
Baxter ExactaMix EM2400和ExactaMix EM1200都是美国百特(Baxter)公司的一套自动化药物混料系统。 Baxter ExactaMix EM2400和ExactaMix EM1200中存在安全漏洞,该漏洞源于ExactaMix应用程序使用了硬编码的管理账户凭证。攻击者可利用该漏洞未授权查看/更新系统配置或数据,可能泄露敏感信息(包括PHI),影响系统的完整性和保密性。以下产品及版本受到影响:Baxter ExactaMix EM2400 1.10版本,1.11版本,1
CVSS Information
N/A
Vulnerability Type
N/A