The Baxter Spectrum Wireless Battery Module (WBM) stores network credentials and PHI (only applicable to Spectrum IQ pumps using auto programming) in unencrypted form. An attacker with physical access to a device that hasn't had all data and settings erased may be able to extract sensitive information.
References
Link | Resource |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsma-22-251-01 | Third Party Advisory US Government Resource |
https://www.us-cert.gov/ics/advisories/icsma-22-xxx-xx | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Baxter
Published: 2022-09-08T00:00:00
Updated: 2022-09-09T14:40:06
Reserved: 2022-03-03T00:00:00
Link: CVE-2022-26390
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-09-09T15:15:09.453
Modified: 2023-07-11T14:40:52.453
Link: CVE-2022-26390
JSON object: View
Redhat Information
No data.