CVE-2015-3958

Опубликовано: 06 июл. 2015

Источник: nvd

CVSS2: 7.8

EPSS Низкий

Описание

Hospira LifeCare PCA Infusion System 5.0 and earlier, and possibly other versions, allows remote attackers to cause a denial of service (forced manual reboot) via a flood of TCP packets.

Ссылки

http://www.fda.gov/MedicalDevices/Safety/AlertsandNotices/ucm446809.htm
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/75138
https://ics-cert.us-cert.gov/advisories/ICSA-15-125-01B
Third Party Advisory
US Government Resource
http://www.fda.gov/MedicalDevices/Safety/AlertsandNotices/ucm446809.htm
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/75138
https://ics-cert.us-cert.gov/advisories/ICSA-15-125-01B
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:hospira:lifecare_pcainfusion_firmware:*:*:*:*:*:*:*:*

Версия до 5.0 (включая)

Одно из

cpe:2.3:h:hospira:lifecare_pca3:-:*:*:*:*:*:*:*

cpe:2.3:h:hospira:lifecare_pca5:-:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.01993

Низкий

7.8 High

CVSS2

Дефекты

CWE-19

Связанные уязвимости

GHSA-p2wv-2pmv-p9xv

github

больше 3 лет назад