Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistIcscertCVELIST:CVE-2017-12721
HistoryFeb 15, 2018 - 10:00 a.m.

CVE-2017-12721

2018-02-1510:00:00
icscert
www.cve.org

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.0%

JSON

An Improper Certificate Validation issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. The pump does not validate host certificates, leaving the pump vulnerable to a man-in-the-middle (MITM) attack.

CNA Affected

[
  {
    "product": "Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump"
      }
    ]
  }
]

Related

nvd 1
cve 1
prion 1
thn 1
ics 1
nvd
nvd
CVE-2017-12721
2018-02-15 10:29:00
cve
cve
CVE-2017-12721
2018-02-15 10:29:00
prion
prion
Input validation
2018-02-15 10:29:00
thn
thn
Hackers Can Remotely Access Syringe Infusion Pumps to Deliver Fatal Overdoses
2017-09-09 02:50:00
ics
ics
Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump Vulnerabilities (Update A)
2017-12-12 12:00:00

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.0%

JSON
Related for CVELIST:CVE-2017-12721
nvd1cve1prion1thn1ics1