CVE-2020-12040

by Fred · 29/06/2020

Sigma Spectrum Infusion System v’s6.x (model 35700BAX) and Baxter Spectrum Infusion System Version(s) 8.x (model 35700BAX2) at the application layer uses an unauthenticated clear-text communication channel to send and receive system status and operational data. This could allow an attacker that has circumvented network security measures to view sensitive non-private data or to perform a man-in-the-middle attack.

Date published : 2020-06-29

https://www.us-cert.gov/ics/advisories/icsma-20-170-04

CVE-2020-12040

Similar

Recent Posts

Categories

CVE-2020-12040

Share this:

Similar

Recent Posts

Categories

Tags