Sigma Spectrum Infusion System Firmware

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:o:baxter:sigma_spectrum_infusion_system_firmware:*:*:*:*:*:*:*:*

part: o version: * update: *

VendorBaxter (a179c94a-1aed-5d11-8395-fe3753820594)
ProductSigma Spectrum Infusion System Firmware (36ab6c10-ae6d-5f1d-a6f6-70cf9def9a6b)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-12040 vulnerable 2026-06-03 14:41:33.192021 Details available
Sigma Spectrum Infusion System v's6.x (model 35700BAX) and Baxter Spectrum Infusion System Version(s) 8.x (model 35700BAX2) at the application layer uses an unauthenticated clear-text communication channel to send and receive system status and operational data. This could allow an attacker that has circumvented network security measures to view sensitive non-private data or to perform a man-in-the-middle attack.
Published: 2020-06-29T13:45:58.000Z
Updated: 2024-08-04T11:48:57.530Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-12039 vulnerable 2026-06-03 14:41:33.190223 Details available
Baxter Sigma Spectrum Infusion Pumps Sigma Spectrum Infusion System v's6.x model 35700BAX & Baxter Spectrum Infusion System v's8.x model 35700BAX2 contain hardcoded passwords when physically entered on the keypad provide access to biomedical menus including device settings, view calibration values, network configuration of Sigma Spectrum WBM if installed.
Published: 2020-06-29T13:45:48.000Z
Updated: 2024-08-04T11:48:58.109Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.