Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Unencrypted internal storage of security credentials
Vulnerability Description
The Baxter Spectrum Wireless Battery Module (WBM) stores network credentials and PHI (only applicable to Spectrum IQ pumps using auto programming) in unencrypted form. An attacker with physical access to a device that hasn't had all data and settings erased may be able to extract sensitive information.
CVSS Information
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
敏感数据加密缺失
Vulnerability Title
Baxter Spectrum 安全漏洞
Vulnerability Description
Baxter Spectrum是美国百特(Baxter)公司的一款输液泵。 Baxter Sigma 和 Baxter Spectrum Infusion Pumps存在安全漏洞,该漏洞源于其以不加密的形式存储网络凭据和患者健康信息(PHI)。PHI使用自动化程序仅存储在Spectrum IQ pumps,攻击者可以在不删除所有数据和设置的情况下访问设备,从而可以提取敏感信息。以下版本受到影响:Baxter Spectrum WBM v16版本、v16D38版本、v17版本、v17D19版本、v20D29
CVSS Information
N/A
Vulnerability Type
N/A