Vulnerability Details CVE-2020-12039
Baxter Sigma Spectrum Infusion Pumps Sigma Spectrum Infusion System v's6.x model 35700BAX & Baxter Spectrum Infusion System v's8.x model 35700BAX2 contain hardcoded passwords when physically entered on the keypad provide access to biomedical menus including device settings, view calibration values, network configuration of Sigma Spectrum WBM if installed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.4%
CVSS Severity
CVSS v3 Score 2.4
CVSS v2 Score 2.1
References
Products affected by CVE-2020-12039
-
cpe:2.3:h:baxter:sigma_spectrum_infusion_system:-
-
cpe:2.3:o:baxter:sigma_spectrum_infusion_system_firmware:6.0
-
cpe:2.3:o:baxter:sigma_spectrum_infusion_system_firmware:6.05
-
cpe:2.3:o:baxter:sigma_spectrum_infusion_system_firmware:8.0