CVSS: 4.2EPSS: 0%CPEs: 13EXPL: 0CVE-2022-26390 – Unencrypted internal storage of security credentials
https://notcve.org/view.php?id=CVE-2022-26390
The Baxter Spectrum Wireless Battery Module (WBM) stores network credentials and PHI (only applicable to Spectrum IQ pumps using auto programming) in unencrypted form. An attacker with physical access to a device that hasn't had all data and settings erased may be able to extract sensitive information. El Módulo de Batería Inalámbrica (WBM) de Baxter Spectrum almacena credenciales de red y PHI (sólo aplicable a las bombas Spectrum IQ que usan programación automática) de forma no cifrada. Un atacante con acceso físico a un dispositivo al que no le han sido borrados todos los datos y configuraciones puede ser capaz de extraer información confidencial • https://www.cisa.gov/uscert/ics/advisories/icsma-22-251-01 https://www.us-cert.gov/ics/advisories/icsma-22-xxx-xx • CWE-311: Missing Encryption of Sensitive Data CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 6.5EPSS: 0%CPEs: 12EXPL: 0CVE-2022-26392 – Format String vulnerability
https://notcve.org/view.php?id=CVE-2022-26392
The Baxter Spectrum WBM (v16, v16D38) and Baxter Spectrum WBM (v17, v17D19, v20D29 to v20D32) when in superuser mode is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive information. Baxter Spectrum WBM (v16, v16D38) y Baxter Spectrum WBM (v17, v17D19, v20D29 a v20D32) cuando están en modo superusuario son susceptibles de ataques de cadena de formato por medio de mensajes de aplicación. Un atacante podría usar esto para leer la memoria del WBM y acceder a información confidencial • https://www.cisa.gov/uscert/ics/advisories/icsma-22-251-01 https://www.us-cert.gov/ics/advisories/icsma-22-xxx-xx • CWE-134: Use of Externally-Controlled Format String •
CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 0CVE-2022-26394 – Unauthenticated network reconfiguration via TCP/UDP
https://notcve.org/view.php?id=CVE-2022-26394
The Baxter Spectrum WBM does not perform mutual authentication with the gateway server host. This may allow an attacker to perform a man in the middle attack that modifies parameters making the network connection fail. Baxter Spectrum WBM no lleva a cabo una autenticación mutua con el host del servidor de la pasarela. Esto puede permitir a un atacante llevar a cabo un ataque de hombre en el medio que modifique los parámetros haciendo que la conexión de red falle • https://www.cisa.gov/uscert/ics/advisories/icsma-22-251-01 https://www.us-cert.gov/ics/advisories/icsma-22-xxx-xx • CWE-306: Missing Authentication for Critical Function •
CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 0CVE-2014-5431
https://notcve.org/view.php?id=CVE-2014-5431
Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 contains a hard-coded password, which provides access to basic biomedical information, limited device settings, and network configuration of the WBM, if connected. The hard-coded password may allow an attacker with physical access to the device to access management functions to make unauthorized configuration changes to biomedical settings such as turn on and off wireless connections and the phase-complete audible alarm that indicates the end of an infusion phase. Baxter has released a new version of the SIGMA Spectrum Infusion System, version 8, which incorporates hardware and software changes. Baxter SIGMA Spectrum Infusion System 6.05 (modelo 35700BAX) con un módulo de batería inalámbrica (WBM), en su versión 16, contiene una contraseña embebida, lo que proporciona acceso a información biomédica básica, opciones del dispositivo limitadas y la configuración de red del WBM, si aplica. La contraseña embebida podría permitir que un atacante con acceso físico al dispositivo acceda a las funciones de gestión para hacer cambios no autorizados en la configuración a las opciones biomédicas, como encender y apagar las conexiones inalámbricas o una alarma audible que indica el final de una fase de inyección. • https://ics-cert.us-cert.gov/advisories/ICSA-15-181-01 • CWE-259: Use of Hard-coded Password CWE-798: Use of Hard-coded Credentials •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2014-5432
https://notcve.org/view.php?id=CVE-2014-5432
Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 is remotely accessible via Port 22/SSH without authentication. A remote attacker may be able to make unauthorized configuration changes to the WBM, as well as issue commands to access account credentials and shared keys. Baxter asserts that this vulnerability only allows access to features and functionality on the WBM and that the SIGMA Spectrum infusion pump cannot be controlled from the WBM. Baxter has released a new version of the SIGMA Spectrum Infusion System, Version 8, which incorporates hardware and software changes. Baxter SIGMA Spectrum Infusion System, en su versión 6.05 (modelo 35700BAX), con un módulo de batería inalámbrica (WBM), en su versión 16, es accesible de forma remota mediante el puerto 22/SSH sin autenticación. • https://ics-cert.us-cert.gov/advisories/ICSA-15-181-01 • CWE-287: Improper Authentication CWE-592: DEPRECATED: Authentication Bypass Issues •