Fresenius Kabi Agilia Link + version 3.0 does not enforce transport layer encryption. Therefore, transmitted data may be sent in cleartext. Transport layer encryption is offered on Port TCP/443, but the affected service does not perform an automated redirect from the unencrypted service on Port TCP/80 to the encrypted service.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:LFresenius Kabi Agilia Connect
OSFresenius-Kabi≤ d25Fresenius Kabi Agilia Partner Maintenance Software
APPFresenius-Kabi≤ 3.3.0Fresenius Kabi Link\+ Agilia
HWFresenius-Kabiwszystkie wersjeFresenius Kabi Link\+ Agilia Firmware
OSFresenius-Kabi3.0< 3.0Fresenius Kabi Vigilant Centerium
APPFresenius-Kabi1.0Fresenius Kabi Vigilant Insight
APPFresenius-Kabi1.0Fresenius Kabi Vigilant Mastermed
APPFresenius-Kabi1.0
Related vulnerabilities
Sensitive endpoints in Fresenius Kabi Agilia Link+ v3.0 and prior can be accessed without any authentication i...
Requests may be used to interrupt the normal operation of the device. When exploited, Fresenius Kabi Agilia Li...
Fresenius Kabi Vigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 allows user input to be validated...
The web application on Agilia Link+ version 3.0 implements authentication and session management mechanisms ex...
Fresenius Kabi Vigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 is vulnerable to reflected cross-...