Baxter Sigma Spectrum Infusion System Firmware 6.05
Approved changes feed: RSS · Atom
cpe:2.3:o:baxter:sigma_spectrum_infusion_system_firmware:6.05:*:*:*:*:*:*:*
part: o version: 6.05 update: *
| Vendor | Baxter (a179c94a-1aed-5d11-8395-fe3753820594) |
|---|---|
| Product | Sigma Spectrum Infusion System Firmware (36ab6c10-ae6d-5f1d-a6f6-70cf9def9a6b) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2014-5434 |
vulnerable | 2026-06-03 14:34:06.449241 |
Details available
Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 has a default account with hard-coded credentials used with the FTP protocol. Baxter asserts no files can be transferred to or from the WBM using this account. Baxter has released a new version of the SIGMA Spectrum Infusion System, Version 8, which incorporates hardware and software changes.
Published: 2019-03-26T14:59:52.000Z
Updated: 2024-08-06T11:41:49.088Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-5433 |
vulnerable | 2026-06-03 14:34:06.448882 |
Details available
An unauthenticated remote attacker may be able to execute commands to view wireless account credentials that are stored in cleartext on Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16, which may allow an attacker to gain access the host network. Baxter has released a new version of the SIGMA Spectrum Infusion System, Version 8, which incorporates hardware and software changes.
Published: 2019-03-26T15:07:39.000Z
Updated: 2024-08-06T11:41:49.305Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-5432 |
vulnerable | 2026-06-03 14:34:06.448516 |
Details available
Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 is remotely accessible via Port 22/SSH without authentication. A remote attacker may be able to make unauthorized configuration changes to the WBM, as well as issue commands to access account credentials and shared keys. Baxter asserts that this vulnerability only allows access to features and functionality on the WBM and that the SIGMA Spectrum infusion pump cannot be controlled from the WBM. Baxter has released a new version of the SIGMA Spectrum Infusion System, Version 8, which incorporates hardware and software changes.
Published: 2019-03-26T15:17:16.000Z
Updated: 2024-08-06T11:41:49.211Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-5431 |
vulnerable | 2026-06-03 14:34:06.447018 |
Details available
Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 contains a hard-coded password, which provides access to basic biomedical information, limited device settings, and network configuration of the WBM, if connected. The hard-coded password may allow an attacker with physical access to the device to access management functions to make unauthorized configuration changes to biomedical settings such as turn on and off wireless connections and the phase-complete audible alarm that indicates the end of an infusion phase. Baxter has released a new version of the SIGMA Spectrum Infusion System, version 8, which incorporates hardware and software changes.
Published: 2019-03-26T15:37:49.000Z
Updated: 2024-08-06T11:41:49.207Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.