Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Baxter PrismaFlex all versions, PrisMax all versions prior to 3.x, The affected devices do not implement data-in-transit encryption (e.g., TLS/SSL) when configured to send treatment data to a PDMS (Patient Data Management System) or an EMR (Electronic Medical Record) system. An attacker could observe sensitive data sent from the device.
CVSS Information
N/A
Vulnerability Type
敏感数据的明文传输
Vulnerability Title
Baxter PrismaFlex和PrisMax 安全漏洞
Vulnerability Description
Baxter PrismaFlex和PrisMax都是美国百特(Baxter)公司的一款重症监护设备。 Baxter PrismaFlex(所有版本)和PrisMax 3.x之前版本中存在安全漏洞,该漏洞源于将治疗数据发送到PDMS(患者数据管理系统)或EMR(电子病历)系统时,受影响的设备未对传输的数据加密(例如TLS/SSL)。攻击者可利用该漏洞获取从设备发送的敏感数据。
CVSS Information
N/A
Vulnerability Type
N/A