CVE-2024-10476: CVE-2024-10476

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-10476

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Default credentials are used in the above listed BD Diagnostic Solutions products. If exploited, threat actors may be able to access, modify or delete data, including sensitive information such as protected health information (PHI) and personally identifiable information (PII). Exploitation of this vulnerability may allow an attacker to shut down or otherwise impact the availability of the system. Note: BD Synapsys™ Informatics Solution is only in scope of this vulnerability when installed on a NUC server. BD Synapsys™ Informatics Solution installed on a customer-provided virtual machine or on the BD Kiestra™ SCU hardware is not in scope.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

CWE-1392

Source: NVD (National Vulnerability Database)

Vulnerability Title

BD多款产品安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

BD BACTEC Blood Culture System等都是美国碧迪医疗（BD）公司的产品。BD BACTEC Blood Culture System是一个血液培养基系统。BD COR System是一个全自动和集成的高通量诊断系统。BD EpiCenter Microbiology Data Management System是一个微生物学数据管理系统。 BD多款产品存在安全漏洞，该漏洞源于使用了默认凭证，导致攻击者能够访问、修改或删除数据。以下产品受到影响：BD BACTEC Blood Cu

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Becton Dickinson & Co	BD BACTEC™ Blood Culture System	0 ~ 7.20	-
Becton Dickinson & Co	BD COR™ System	0 ~ 8.90	-
Becton Dickinson & Co	BD EpiCenter™ Microbiology Data Management System	0 ~ 7.45	-
Becton Dickinson & Co	BD MAX™ System	0 ~ 6.10	-
Becton Dickinson & Co	BD Phoenix™ M50 Automated Microbiology System	0 ~ 2.70	-
Becton Dickinson & Co	BD Synapsys™ Informatics Solution	0 ~ 6.10	-

II. Public POCs for CVE-2024-10476

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2024-10476

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same vendor: Becton Dickinson & Co

Same weakness: CWE-1392

V. Comments for CVE-2024-10476

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2024-10476

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2024-10476

III. Intelligence Information for CVE-2024-10476

IV. Related Vulnerabilities

V. Comments for CVE-2024-10476

Leave a comment