CNVD-2018-11404 — Vulnetix

CNVD-2018-11404 PUBLISHED

RAPIDLab 1200系统是一种基于盒式血气、电解质和代谢物分析仪，被设计用于中到大容量的临床实验室。RAPIDPoint 400/405/500系统是基于血气、电解质和代谢物的盒式分析仪，专为在护理点环境中使用而设计。 SIEMENS RAPIDLab 1200 and RAPIDPoint 400/500 Blood Gas Analyzers存在安全漏洞。具有硬编码密码的工厂帐户允许攻击者通过端口5900/tcp访问设备。成功利用不需要用户交互或特权，并影响受影响设备的保密性，完整性和可用性。

Affected Products

Vendor	Product	Versions
	SIEMENS RAPIDPoint 400 systems
	SIEMENS RAPIDLab 1200 Series <V3.3
	SIEMENS RAPIDPoint 500 systems >=V3.0
	SIEMENS RAPIDLab 1200 systems
	SIEMENS RAPIDPoint 500 systems <=V2.3
	SIEMENS RAPIDPoint 500 systems V2.4.*

Timeline

Jun 13, 2018 CVE ID Reserved
Jun 13, 2018 CVE Published

References

https://cert-portal.siemens.com/productcert/pdf/ssa-755010.pdf url

Open in Interactive Console →