Lucene search
IcscertCVELIST:CVE-2021-44464HistoryJan 21, 2022 - 6:17 p.m.
CVE-2021-44464 Fresenius Kabi Agilia Connect Infusion System hard coded credentials
2022-01-2118:17:42
CWE-798
icscert
www.cve.org
1
fresenius kabi
agilia connect
infusion system
vigilant software suite
mastermed dashboard
version 2.0.1.3
service credentials
common instances
attacker
password
gain privileges
CVSS3
6.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
9.1
Confidence
High
EPSS
0.001
Percentile
42.8%
Vigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 contains service credentials likely to be common across all instances. An attacker in possession of the password may gain privileges on all installations of this software.
CNA Affected
[
{
"product": "Vigilant Software Suite (Mastermed Dashboard)",
"vendor": "Fresenius Kabi",
"versions": [
{
"lessThan": "2.0.1.3",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
cnvd
cnvd
cve
cve
CVE-2021-44464
2022-01-21 19:15:09
prion
prion
Design/Logic Flaw
2022-01-21 19:15:00
nvd
nvd
CVE-2021-44464
2022-01-21 19:15:09
ics
ics
Fresenius Kabi Agilia Connect Infusion System (Update A)
2022-01-27 12:00:00
CVSS3
6.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
AI Score
9.1
Confidence
High
EPSS
0.001
Percentile
42.8%
Related for CVELIST:CVE-2021-44464