Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
No limit on failed login attempts with Clinician Password or Serial Number Clinician Password on Life2000 Ventilator
Vulnerability Description
There is no limit on the number of failed login attempts permitted with the Clinician Password or the Serial Number Clinician Password. An attacker could execute a brute-force attack to gain unauthorized access to the ventilator, and then make changes to device settings that could disrupt the function of the device and/or result in unauthorized information disclosure.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
过多认证尝试的限制不恰当
Vulnerability Title
Baxter Life2000 安全漏洞
Vulnerability Description
Baxter Life2000是Baxter公司的一款无需面罩的无创呼吸机。 Baxter Life2000存在安全漏洞,该漏洞源于使用临床医生密码或序列号临床医生密码允许的登录失败次数没有限制,攻击者可以执行暴力攻击以获得对呼吸机的未经授权的访问权限。
CVSS Information
N/A
Vulnerability Type
N/A