The Latest in IT Security

Vulnerabilities Allow Hackers to Tamper With Doses Delivered by Medical Infusion Pumps

26
Aug
2021
Vulnerabilities Allow Hackers to Tamper With Doses Delivered by Medical Infusion Pumps

image credit: pxfuel

A total of five vulnerabilities were identified, the most severe of which carries a CVSS score of 9.7 and is tracked as CVE-2021-33885. The issue exists because the device doesn’t verify who is sending the commands, thus allowing a remote, unauthenticated attacker to send input to the device, which will use it instead of the correct data.

Next in line is CVE-2021-33886 (CVSS score of 8.2), where proprietary networking commands aren’t properly authenticated, thus allowing an attacker to reconfigure the device remotely.

Related posts:
  1. 2 Million IoT Devices Vulnerable to Complete Takeover
  2. MFA Bypass Bugs Opened Microsoft 365 to Attack
  3. Google’s Waze Can Allow Hackers to Identify and Track Users
  4. Compromised CMS Credentials Likely Used to Hack Trump Campaign Website
  5. Hackers Start Exploiting Recent Vulnerabilities in Thrive Theme WordPress Plugins

Read More

Tags:  
Written by Feedproxy
0 Comments
Comments are closed.

Categories

MONDAY, MARCH 10, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments