Lucene search

[email protected]NVD:CVE-2022-43557

HistoryDec 05, 2022 - 10:15 p.m.

CVE-2022-43557

2022-12-0522:15:11

CWE-1299

CWE-287

[email protected]

web.nvd.nist.gov

infusion pumps

rs-232 port

unauthorized access

CVSS3

5.3

Attack Vector

PHYSICAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

EPSS

0.001

Percentile

20.0%

JSON

The BD BodyGuard™ infusion pumps specified allow for access through the RS-232 (serial) port interface. If exploited, threat actors with physical access, specialized equipment and knowledge may be able to configure or disable the pump. No electronic protected health information (ePHI), protected health information (PHI) or personally identifiable information (PII) is stored in the pump.

Affected configurations

Nvd

Node

bdbodyguard_999-603Match-

AND

bdbodyguard_999-603_firmwareMatch-

Node

bdbodyguard_duo_999-903Match-

AND

bdbodyguard_duo_999-903_firmwareMatch-

Node

bdbodyguard_epidural_999-683Match-

AND

bdbodyguard_epidural_999-683_firmwareMatch-

Node

bdbodyguard_pain_manager_999-803Match-

AND

bdbodyguard_pain_manager_999-803_firmwareMatch-

Node

bdbodyguard_t_999-103Match-

AND

bdbodyguard_t_999-103_firmwareMatch-

Node

bdbodyguard_323_colorvisionMatch-

AND

bdbodyguard_323_colorvision_firmwareMatch-

Node

bdbodyguard_121_twinsMatch-

AND

bdbodyguard_121_twins_firmwareMatch-

VendorProductVersionCPE
bdbodyguard_999-603-cpe:2.3:h:bd:bodyguard_999-603:-:*:*:*:*:*:*:*
bdbodyguard_999-603_firmware-cpe:2.3:o:bd:bodyguard_999-603_firmware:-:*:*:*:*:*:*:*
bdbodyguard_duo_999-903-cpe:2.3:h:bd:bodyguard_duo_999-903:-:*:*:*:*:*:*:*
bdbodyguard_duo_999-903_firmware-cpe:2.3:o:bd:bodyguard_duo_999-903_firmware:-:*:*:*:*:*:*:*
bdbodyguard_epidural_999-683-cpe:2.3:h:bd:bodyguard_epidural_999-683:-:*:*:*:*:*:*:*
bdbodyguard_epidural_999-683_firmware-cpe:2.3:o:bd:bodyguard_epidural_999-683_firmware:-:*:*:*:*:*:*:*
bdbodyguard_pain_manager_999-803-cpe:2.3:h:bd:bodyguard_pain_manager_999-803:-:*:*:*:*:*:*:*
bdbodyguard_pain_manager_999-803_firmware-cpe:2.3:o:bd:bodyguard_pain_manager_999-803_firmware:-:*:*:*:*:*:*:*
bdbodyguard_t_999-103-cpe:2.3:h:bd:bodyguard_t_999-103:-:*:*:*:*:*:*:*
bdbodyguard_t_999-103_firmware-cpe:2.3:o:bd:bodyguard_t_999-103_firmware:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
bd	bodyguard_999-603	-	cpe:2.3:h:bd:bodyguard_999-603:-:::::::*
bd	bodyguard_999-603_firmware	-	cpe:2.3:o:bd:bodyguard_999-603_firmware:-:::::::*
bd	bodyguard_duo_999-903	-	cpe:2.3:h:bd:bodyguard_duo_999-903:-:::::::*
bd	bodyguard_duo_999-903_firmware	-	cpe:2.3:o:bd:bodyguard_duo_999-903_firmware:-:::::::*
bd	bodyguard_epidural_999-683	-	cpe:2.3:h:bd:bodyguard_epidural_999-683:-:::::::*
bd	bodyguard_epidural_999-683_firmware	-	cpe:2.3:o:bd:bodyguard_epidural_999-683_firmware:-:::::::*
bd	bodyguard_pain_manager_999-803	-	cpe:2.3:h:bd:bodyguard_pain_manager_999-803:-:::::::*
bd	bodyguard_pain_manager_999-803_firmware	-	cpe:2.3:o:bd:bodyguard_pain_manager_999-803_firmware:-:::::::*
bd	bodyguard_t_999-103	-	cpe:2.3:h:bd:bodyguard_t_999-103:-:::::::*
bd	bodyguard_t_999-103_firmware	-	cpe:2.3:o:bd:bodyguard_t_999-103_firmware:-:::::::*

Rows per page:

1-10 of 141

References

www.bd.com/en-us/about-bd/cybersecurity/bulletin/bd-bodyguard-pumps-rs-232-interface-vulnerability

CVSS3

5.3

Attack Vector

PHYSICAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

EPSS

0.001

Percentile

20.0%

JSON

Related for NVD:CVE-2022-43557

cve1 prion1 cvelist1 ics1