SB2019111108 - Multiple vulnerabilities in Medtronic Valleylab pruducts

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2019111108

SB2019111108 - Multiple vulnerabilities in Medtronic Valleylab pruducts

Published: November 11, 2019

Security Bulletin ID SB2019111108
Severity
Medium
Patch available
YES
Number of vulnerabilities 4
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

Medium 25% Low 75%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 4 secuirty vulnerabilities.


1) Improper Authentication (CVE-ID: CVE-2019-13531)

The vulnerability allows a local attacker to bypass authentication process.

The vulnerability exists due to an error in the RFID security mechanism used for authentication between the FT10/LS10 Energy Platform and instruments. An attacker with physical access to the device can connect inauthentic instruments to the generator, bypass authentication process and gain unauthorized access to the application.


2) Protection Mechanism Failure (CVE-ID: CVE-2019-13535)

The vulnerability allows a local attacker to bypass certain restrictions.

The vulnerability exists due to the RFID security mechanism does not apply read protection. An attacker with physical access to the device can gain full read access of the RFID security mechanism data.

3) Use of hard-coded credentials (CVE-ID: CVE-2019-13543)

The vulnerability allows a remote attacker to gain full access to vulnerable system.

The vulnerability exists due to presence of hard-coded credentials in application code. A remote unauthenticated attacker can access the affected system using the hard-coded credentials and read files on the target system.



4) Reversible One-Way Hash (CVE-ID: CVE-2019-13539)

The vulnerability allows a local user to bypass authentication on the target system.

The vulnerability exists due to the the affected products use the decrypt algorithm for OS password hashing. While interactive, network-based logins are disable and local user can use other vulnerabilities to obtain local shell access and access these hashes.

Remediation

Install update from vendor's website.

References