Lucene search
PRIOn knowledge basePRION:CVE-2020-12024HistoryJun 29, 2020 - 2:15 p.m.
Hardcoded credentials
2020-06-2914:15:00
PRIOn knowledge base
www.prio-n.com
1
Baxter ExactaMix EM 2400 versions 1.10, 1.11, 1.13, 1.14 and ExactaMix EM1200 Versions 1.1, 1.2, 1.4 and 1.5 does not restrict access to the USB interface from an unauthorized user with physical access. Successful exploitation of this vulnerability may allow an attacker with physical access to the system the ability to load an unauthorized payload or unauthorized access to the hard drive by booting a live USB OS. This could impact confidentiality and integrity of the system and risk exposure of sensitive information including PHI.
| CPE | Name | Operator | Version |
|---|---|---|---|
| em1200_firmware | eq | 1.1 | |
| em1200_firmware | eq | 1.2 | |
| em1200_firmware | eq | 1.4 | |
| em1200_firmware | eq | 1.5 | |
| em2400_firmware | eq | 1.10 | |
| em2400_firmware | eq | 1.11 | |
| em2400_firmware | eq | 1.13 | |
| em2400_firmware | eq | 1.14 |
Related
cvelist
cvelist
CVE-2020-12024
2020-06-29 13:51:31
nvd
nvd
CVE-2020-12024
2020-06-29 14:15:11
cve
cve
CVE-2020-12024
2020-06-29 14:15:11
ics
ics
Baxter ExactaMix (Update A)
2020-07-28 12:00:00