← Back

CVE-2016-8358

nvd nist
Published: Feb 13, 2017Modified: May 13, 2026

JSON object

Loading...
8.5
Vector
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 6.0
Source: NVD

Description

An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. The affected software does not verify the identities at communication endpoints, which may allow a man-in-the-middle attacker to gain access to the communication channel between endpoints.

Affected (4)

Smiths Medical
1 product
Cadd Solis Medication Safety Software
Configuration A
4 vulnerable
Vulnerable SoftwareAffected Versions
Smiths Medical
Cadd Solis Medication Safety Software
Version 1.0
Cadd Solis Medication Safety Software
Version 2.0
Cadd Solis Medication Safety Software
Version 3.0
Cadd Solis Medication Safety Software
Version 3.1

Related CWEs

CWE-346
Origin Validation Error
The product does not properly verify that the source of data or communication is valid.

References (4)

Source: ics-cert@hq.dhs.gov
Third Party AdvisoryVDB Entry
Source: ics-cert@hq.dhs.gov
Third Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryUS Government Resource

Timeline

No history available yet.