← Back

Sigma Spectrum 35700bax2 Firmware

sigma_spectrum_35700bax2_firmware

Vendor: Baxter • 4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-26394
1Baxter
4Baxter Spectrum Iq 35700bax3 Firmware
Sigma Spectrum 35700bax2 FirmwareSigma Spectrum 35700bax Firmware+1 more
Nov 21, 2024
Sep 9, 2022
N/A· v4
5.4 MEDIUM· v3
N/A· v2
The Baxter Spectrum WBM does not perform mutual authentication with the gateway server host. This may allow an attacker to perform a man in the middle attack that modifies parameters making the network connection fail.
CVE-2022-26393
1Baxter
4Baxter Spectrum Iq 35700bax3 Firmware
Sigma Spectrum 35700bax2 FirmwareSigma Spectrum 35700bax Firmware+1 more
Nov 21, 2024
Sep 9, 2022
N/A· v4
8.1 HIGH· v3
N/A· v2
The Baxter Spectrum WBM is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive information or cause a Denial of Service (DoS) on the WB...Show more
The Baxter Spectrum WBM is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive information or cause a Denial of Service (DoS) on the WBM.Show less
CVE-2022-26392
1Baxter
4Baxter Spectrum Iq 35700bax3 Firmware
Sigma Spectrum 35700bax2 FirmwareSigma Spectrum 35700bax Firmware+1 more
Nov 21, 2024
Sep 9, 2022
N/A· v4
6.5 MEDIUM· v3
N/A· v2
The Baxter Spectrum WBM (v16, v16D38) and Baxter Spectrum WBM (v17, v17D19, v20D29 to v20D32) when in superuser mode is susceptible to format string attacks via application messaging. An attacker could use this to read m...Show more
The Baxter Spectrum WBM (v16, v16D38) and Baxter Spectrum WBM (v17, v17D19, v20D29 to v20D32) when in superuser mode is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive information.Show less
CVE-2022-26390
1Baxter
4Baxter Spectrum Iq 35700bax3 Firmware
Sigma Spectrum 35700bax2 FirmwareSigma Spectrum 35700bax Firmware+1 more
Nov 21, 2024
Sep 9, 2022
N/A· v4
4.2 MEDIUM· v3
N/A· v2
The Baxter Spectrum Wireless Battery Module (WBM) stores network credentials and PHI (only applicable to Spectrum IQ pumps using auto programming) in unencrypted form. An attacker with physical access to a device that ha...Show more
The Baxter Spectrum Wireless Battery Module (WBM) stores network credentials and PHI (only applicable to Spectrum IQ pumps using auto programming) in unencrypted form. An attacker with physical access to a device that hasn't had all data and settings erased may be able to extract sensitive information.Show less