Vulnerability in Baxter Sigma Spectrum Infusion System

CVE-2014-5433

An unauthenticated remote attacker may be able to execute commands to view wireless account credentials that are stored in cleartext on Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM)…

EPSS: 0.002 (41.0th percentile) — read the EPSS interpretation.

Affected products

Baxter Sigma Spectrum Infusion System — versions 6.05 (model 35700BAX) with wireless battery module (WBM) version 16

Weakness classification (CWE)

CWE-312 — Cleartext Storage of Sensitive Information

References

ics-cert.us-cert.gov/advisories/ICSA-15-181-01 (x_refsource_MISC)