CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-26394

The Baxter Spectrum WBM does not perform mutual authentication with the gateway server host. This may allow an attacker to perform a man in the middle attack that modifies parameters making the network connection fail.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.4%

CVSS Severity

CVSS v3 Score 5.5

References

Products affected by CVE-2022-26394

Baxter » Baxter Spectrum Iq 35700bax3 » Version: N/A

cpe:2.3:h:baxter:baxter_spectrum_iq_35700bax3:-
Baxter » Sigma Spectrum 35700bax2 » Version: N/A

cpe:2.3:h:baxter:sigma_spectrum_35700bax2:-
Baxter » Sigma Spectrum 35700bax » Version: N/A

cpe:2.3:h:baxter:sigma_spectrum_35700bax:-
Baxter » Spectrum Wireless Battery Module » Version: N/A

cpe:2.3:h:baxter:spectrum_wireless_battery_module:-
Baxter » Baxter Spectrum Iq 35700bax3 Firmware » Version: N/A

cpe:2.3:o:baxter:baxter_spectrum_iq_35700bax3_firmware:-
Baxter » Sigma Spectrum 35700bax2 Firmware » Version: N/A

cpe:2.3:o:baxter:sigma_spectrum_35700bax2_firmware:-
Baxter » Sigma Spectrum 35700bax Firmware » Version: N/A

cpe:2.3:o:baxter:sigma_spectrum_35700bax_firmware:-
Baxter » Spectrum Wireless Battery Module Firmware » Version: 16

cpe:2.3:o:baxter:spectrum_wireless_battery_module_firmware:16
Baxter » Spectrum Wireless Battery Module Firmware » Version: 16d38

cpe:2.3:o:baxter:spectrum_wireless_battery_module_firmware:16d38
Baxter » Spectrum Wireless Battery Module Firmware » Version: 17

cpe:2.3:o:baxter:spectrum_wireless_battery_module_firmware:17
Baxter » Spectrum Wireless Battery Module Firmware » Version: 17d19

cpe:2.3:o:baxter:spectrum_wireless_battery_module_firmware:17d19
Baxter » Spectrum Wireless Battery Module Firmware » Version: 20d29

cpe:2.3:o:baxter:spectrum_wireless_battery_module_firmware:20d29
Baxter » Spectrum Wireless Battery Module Firmware » Version: 20d32

cpe:2.3:o:baxter:spectrum_wireless_battery_module_firmware:20d32

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-26394

Products

Pricing

Contact Us