CVE-2022-47376
7.3
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Summary
The Alaris Infusion Central software, versions 1.1 to 1.3.2, may contain a recoverable password after the installation. No patient health data is stored in the database, although some site installations may choose to store personal data.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Alaris Infusion Central | <=1.3.2 | affected |
Weaknesses
- CWE-257: CWE-257: Storing Passwords in a Recoverable Format
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.