In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems prior to v4107600010.23, an attacker with network access to the integrated web server could retrieve default or user defined credentials stored and transmitted in an insecure manner.
oryginał ENCVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HBeaconmedaes Scroll Medical Air Systems
HWBeaconmedaeswszystkie wersjeBeaconmedaes Scroll Medical Air Systems Firmware
OSBeaconmedaes< 4107600010.23
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Powiązane podatności
CVE-2018-7510CRITICAL9.8ten sam produkt
In the web application in BeaconMedaes TotalAlert Scroll Medical Air Systems running software versions prior t...
CVE-2018-7526HIGH7.5ten sam produkt
In TotalAlert Web Application in BeaconMedaes Scroll Medical Air Systems prior to v4107600010.23, by accessing...