CVE-2015-3958

Published: Jul 6, 2015Modified: May 6, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

Hospira LifeCare PCA Infusion System 5.0 and earlier, and possibly other versions, allows remote attackers to cause a denial of service (forced manual reboot) via a flood of TCP packets.

Affected (1)

Products: Hospira: Lifecare Pcainfusion Firmware

Hospira

1 product

Lifecare Pcainfusion Firmware

Configuration A

1 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Hospira Lifecare Pcainfusion Firmware	Up to 5.0

Running on/with	Platform Versions
Hospira Lifecare Pca3	All versions
Hospira Lifecare Pca5	All versions

Related CWEs

CWE-19

References (6)

http://www.fda.gov/MedicalDevices/Safety/AlertsandNotices/ucm446809.htm

Source: ics-cert@hq.dhs.gov

Third Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/75138

Source: ics-cert@hq.dhs.gov

https://ics-cert.us-cert.gov/advisories/ICSA-15-125-01B

Source: ics-cert@hq.dhs.gov

Third Party AdvisoryUS Government Resource

http://www.fda.gov/MedicalDevices/Safety/AlertsandNotices/ucm446809.htm

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/75138

Source: af854a3a-2127-422b-91ae-364da2661108

https://ics-cert.us-cert.gov/advisories/ICSA-15-125-01B

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

Timeline

No history available yet.