CVE-2014-5403

Summary

Hospira MedNet before 6.1 uses hardcoded cryptographic keys for protection of data transmission from infusion pumps, which allows remote attackers to obtain sensitive information by sniffing the network.

Affected Software

VendorProductVersion RangeStatus
HospiraMedNet0 <= 5.8affected
HospiraMedNet6.1unaffected

Weaknesses

  • CWE-321: CWE-321

ADP Enrichment

CVE Program Container

Additional References

References