CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-27260

Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 HL7 v2.x injection vulnerabilities exist in the affected products that allow physically proximate attackers with a connected barcode reader to inject HL7 v2.x segments into specific HL7 v2.x messages via multiple expected parameters.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 29.9%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 2.1

References

https://us-cert.cisa.gov/ics/advisories/icsma-21-007-01
https://us-cert.cisa.gov/ics/advisories/icsma-21-007-01

Products affected by CVE-2020-27260

Innokasmedical » Vital Signs Monitor Vc150 » Version: N/A

cpe:2.3:h:innokasmedical:vital_signs_monitor_vc150:-
Innokasmedical » Vital Signs Monitor Vc150 Firmware » Version: N/A

cpe:2.3:o:innokasmedical:vital_signs_monitor_vc150_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-27260

Products

Pricing

Contact Us