Critical severity9.9NVD Advisory· Published Feb 13, 2017· Updated Jun 17, 2026
CVE-2016-8355
CVE-2016-8355
Description
An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. CADD-Solis Medication Safety Software grants an authenticated user elevated privileges on the SQL database, which would allow an authenticated user to modify drug libraries, add and delete users, and change user permissions. According to Smiths-Medical, physical access to the pump is required to install drug library updates.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:smiths-medical:cadd-solis_medication_safety_software:1.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:smiths-medical:cadd-solis_medication_safety_software:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:smiths-medical:cadd-solis_medication_safety_software:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:smiths-medical:cadd-solis_medication_safety_software:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:smiths-medical:cadd-solis_medication_safety_software:3.1:*:*:*:*:*:*:*
- (no CPE)range: 1.0, 2.0, 3.0, 3.1
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/94630nvdThird Party AdvisoryVDB Entry
- ics-cert.us-cert.gov/advisories/ICSMA-16-306-01nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.