Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Baxter Spectrum Wireless Battery Module (WBM) Security Vulnerabilities

cve
cve

CVE-2022-26392

The Baxter Spectrum WBM (v16, v16D38) and Baxter Spectrum WBM (v17, v17D19, v20D29 to v20D32) when in superuser mode is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive...

6.5CVSS

6.7AI Score

0.001EPSS

2022-09-09 03:15 PM
32
7
cve
cve

CVE-2022-26393

The Baxter Spectrum WBM is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive information or cause a Denial of Service (DoS) on the...

8.1CVSS

7.7AI Score

0.001EPSS

2022-09-09 03:15 PM
35
9
cve
cve

CVE-2022-26394

The Baxter Spectrum WBM does not perform mutual authentication with the gateway server host. This may allow an attacker to perform a man in the middle attack that modifies parameters making the network connection...

5.5CVSS

6.2AI Score

0.0005EPSS

2022-09-09 03:15 PM
22
7
cve
cve

CVE-2022-26390

The Baxter Spectrum Wireless Battery Module (WBM) stores network credentials and PHI (only applicable to Spectrum IQ pumps using auto programming) in unencrypted form. An attacker with physical access to a device that hasn't had all data and settings erased may be able to extract sensitive...

4.2CVSS

5.1AI Score

0.001EPSS

2022-09-09 03:15 PM
28
6
cve
cve

CVE-2020-12047

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24), when used with a Baxter Spectrum v8.x (model 35700BAX2) in a factory-default wireless configuration enables an FTP service with hard-coded...

9.8CVSS

9.4AI Score

0.002EPSS

2020-06-29 02:15 PM
25
cve
cve

CVE-2020-12041

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24) telnet Command-Line Interface, grants access to sensitive data stored on the WBM that permits temporary configuration changes to network settings of the WBM, and allows the WBM to be rebooted. Temporary configuration changes to...

9.4CVSS

9.1AI Score

0.002EPSS

2020-06-29 02:15 PM
24
cve
cve

CVE-2020-12043

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24) when configured for wireless networking the FTP service operating on the WBM remains operational until the WBM is...

9.8CVSS

9.5AI Score

0.002EPSS

2020-06-29 02:15 PM
23
cve
cve

CVE-2020-12045

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24) when used in conjunction with a Baxter Spectrum v8.x (model 35700BAX2), operates a Telnet service on Port 1023 with hard-coded...

9.8CVSS

9.4AI Score

0.002EPSS

2020-06-29 02:15 PM
22