Improper Authentication in PrismaFlex and PrisMax

#VU29155 Improper Authentication in PrismaFlex and PrisMax

Published: 2020-06-19

Vulnerability identifier: #VU29155

Vulnerability risk: Medium

CVSSv3.1: 6.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-12035

CWE-ID: CWE-287

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
PrismaFlex
Hardware solutions / Medical equipment
PrisMax
Hardware solutions / Medical equipment

Vendor: Baxter

Description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to improper authentication when configured to send treatment data to a PDMS or an EMR system. A remote attacker can bypass authentication process and modify treatment status information.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

PrismaFlex: All versions

PrisMax: All versions

External links
http://ics-cert.us-cert.gov/advisories/icsma-20-170-02

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Baxter PrismaFlex and PrisMax