Lifecare Pca Infusion System
Approved changes feed: RSS · Atom
cpe:2.3:a:hospira:lifecare_pca_infusion_system:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Hospira (c0d9e8bb-f70a-5b1e-b62f-95531b009d1a) |
|---|---|
| Product | Lifecare Pca Infusion System (e27ebbc5-d95b-5aef-af90-fe5f79d3e52c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2015-1012 |
vulnerable | 2026-06-08 05:06:24.818484 |
Details available
Wireless keys are stored in plain text on version 5 of the Hospira LifeCare PCA Infusion System. According to Hospira, version 3 of the LifeCare PCA Infusion System is not indicated for wireless use, is not shipped with wireless capabilities, and should not be modified to be used in a wireless capacity in a clinical setting. Hospira has developed a new version of the PCS Infusion System, version 7.0 that addresses the identified vulnerabilities. Version 7.0 has Port 20/FTP and Port 23/TELNET closed by default to prevent unauthorized access.
Published: 2019-03-25T18:20:12.000Z
Updated: 2024-08-06T04:26:11.620Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-5406 |
vulnerable | 2026-06-08 05:05:47.840037 |
Hospira LifeCare PCA Infusion System
The Hospira LifeCare PCA Infusion System before 7.0 does not validate network traffic associated with sending a (1) drug library, (2) software update, or (3) configuration change, which allows remote attackers to modify settings or medication data via packets on the (a) TELNET, (b) HTTP, (c) HTTPS, or (d) UPNP port. NOTE: this issue might overlap CVE-2015-3459.
Published: 2015-07-06T19:10:00.000Z
Updated: 2025-11-03T18:34:36.324Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.