One Article Review
| Source |  CVE Liste |
|---|---|
| Identifiant | 8318026 |
| Date de publication | 2023-03-13 09:15:10 (vue: 2023-03-13 11:07:29) |
| Titre | CVE-2023-0888 |
| Texte | An improper neutralization of directives in dynamically evaluated code vulnerability in the WiFi Battery embedded web server in versions L90/U70 and L92/U92 can be used to gain administrative access to the WiFi communication module. An authenticated user, having access to both the medical device WiFi network (such as a biomedical engineering staff member) and the specific B.Braun Battery Pack SP with WiFi web server credentials, could get administrative (root) access on the infusion pump communication module. This could be used as a vector to start further attacks |
| Envoyé | Oui |
| Condensat | 0888 2023 access administrative attacks authenticated battery biomedical both braun can code communication could credentials cve device directives dynamically embedded engineering evaluated further gain get having improper infusion l90/u70 l92/u92 medical member module network neutralization pack pump root server specific staff start such used user vector versions vulnerability web wifi |
| Tags | Vulnerability Medical |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.