RSS   Vulnerabilities for 'Welch allyn connex cardio'   RSS

2021-12-15
 
CVE-2021-43935

CWE-288
 

 
The impacted products, when configured to use SSO, are affected by an improper authentication vulnerability. This vulnerability allows the application to accept manual entry of any active directory (AD) account provisioned in the application without supplying a password, resulting in access to the application as the supplied AD account, with all associated privileges.

 

 >>> Vendor: Baxter 5 Products
Sigma spectrum infusion system firmware
Welch allyn connex cardio
Welch allyn diagnostic cardiology suite
Welch allyn rscribe resting ecg system
Welch allyn vision express holter analysis system


Copyright 2024, cxsecurity.com

 

Back to Top