Описание
A firmware validation issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. There is no firmware validation (e.g., cryptographic signature validation) during a File Upload for a firmware update.
Ссылки
- Broken Link
- Product
- Vendor Advisory
- Broken Link
- Product
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.2.5.7 (исключая)
Одновременно
cpe:2.3:o:swisslog-healthcare:hmi-3_control_panel_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:swisslog-healthcare:hmi-3_control_panel:-:*:*:*:*:*:*:*
EPSS
Процентиль: 83%
0.02029
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-347
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
A firmware validation issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. There is no firmware validation (e.g., cryptographic signature validation) during a File Upload for a firmware update.
EPSS
Процентиль: 83%
0.02029
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-347