漏洞标题
BD Totalys MultiProcessor - hardcoded 身份驗證
漏洞描述信息
BD Totalys MultiProcessor - 硬编码凭据
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
BD Totalys MultiProcessor - Hardcoded Credentials
漏洞描述信息
BD Totalys MultiProcessor, versions 1.70 and earlier, contain hardcoded credentials. If exploited, threat actors may be able to access, modify or delete sensitive information, including electronic protected health information (ePHI), protected health information (PHI) and personally identifiable information (PII). Customers using BD Totalys MultiProcessor version 1.70 with Microsoft Windows 10 have additional operating system hardening configurations which increase the attack complexity required to exploit this vulnerability.
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
漏洞类别
使用硬编码的凭证
漏洞标题
BD Totalys MultiProcessor 信任管理问题漏洞
漏洞描述信息
BD Totalys MultiProcessor是美国碧迪医疗(BD)公司的一种医疗设备。将宫颈样本细胞富集过程的全自动化、严格的保管链和用于辅助检测的可定制小份样品相结合。 BD Totalys MultiProcessor 存在信任管理问题漏洞,该漏洞源于使用硬编码凭据,这可能允许攻击者访问、修改或删除敏感信息,包括 ePHI、PHI 和 PII。
CVSS信息
N/A
漏洞类别
信任管理问题