Lucene search
BDCVE-2023-30562HistoryJul 13, 2023 - 8:15 p.m.
CVE-2023-30562
2023-07-1320:15:09
CWE-345
BD
web.nvd.nist.gov
22
cve-2023-30562
gre dataset
systems manager
tampering
pcus
nvd
CVSS3
6.7
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H
AI Score
6.5
Confidence
High
EPSS
0
Percentile
9.0%
A GRE dataset file within Systems Manager can be tampered with and distributed to PCUs.
Affected configurations
Node
bdalaris_guardrails_editorRangeβ€12.1.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bd | alaris_guardrails_editor | * | cpe:2.3:a:bd:alaris_guardrails_editor:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "BD AlarisΓ’βΒ’ GuardrailsΓ’βΒ’ Editor",
"vendor": "Becton Dickinson & Co",
"versions": [
{
"lessThanOrEqual": "12.1.2",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"lessThanOrEqual": "12.3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-30562
2023-07-13 20:15:09
prion
prion
Code injection
2023-07-13 20:15:00
cvelist
cvelist
CVE-2023-30562 Lack of Dataset Integrity Checking
2023-07-13 19:03:32
ics
ics
BD Alaris System with Guardrails Suite MX (Update A)
2023-10-26 12:00:00
CVSS3
6.7
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H
AI Score
6.5
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2023-30562