Описание
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected parameters.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 1.7.15 (исключая)
Одновременно
cpe:2.3:o:innokasmedical:vital_signs_monitor_vc150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:innokasmedical:vital_signs_monitor_vc150:-:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00109
Низкий
5.3 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-74
CWE-74
Связанные уязвимости
github
больше 3 лет назад
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected parameters.
EPSS
Процентиль: 30%
0.00109
Низкий
5.3 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-74
CWE-74