CVE-2014-5403
N/A
N/A
Summary
Hospira MedNet before 6.1 uses hardcoded cryptographic keys for protection of data transmission from infusion pumps, which allows remote attackers to obtain sensitive information by sniffing the network.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Hospira | MedNet | 0 <= 5.8 | affected |
| Hospira | MedNet | 6.1 | unaffected |
Weaknesses
- CWE-321: CWE-321
ADP Enrichment
CVE Program Container
Additional References
References
- https://www.cisa.gov/news-events/ics-advisories/icsa-15-090-03
- https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2015/icsa-15-090-03.json
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.