Unrated severityNVD Advisory· Published Apr 3, 2015· Updated May 6, 2026

CVE-2014-5403

Description

Hospira MedNet before 6.1 uses hardcoded cryptographic keys for protection of data transmission from infusion pumps, which allows remote attackers to obtain sensitive information by sniffing the network.

Affected products

Hospira/Mednet
cpe:2.3:a:hospira:mednet:*:*:*:*:*:*:*:*
Range: <=5.8
Hospira/MedNetv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

ics-cert.us-cert.gov/advisories/ICSA-15-090-03nvdThird Party AdvisoryUS Government Resource
github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2015/icsa-15-090-03.jsonnvd
www.cisa.gov/news-events/ics-advisories/icsa-15-090-03nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000