VYPR

PrisMax

by Baxter

CVEs (3)

  • CVE-2020-12037HigJun 29, 2020
    risk 0.49cvss 7.5epss 0.00

    Baxter PrismaFlex all versions, PrisMax all versions prior to 3.x, The affected devices do not implement data-in-transit encryption (e.g., TLS/SSL) when configured to send treatment data to a PDMS (Patient Data Management System) or an EMR (Electronic Medical Record) system. An…

  • CVE-2020-12036HigJun 29, 2020
    risk 0.49cvss 7.5epss 0.01

    Baxter PrismaFlex all versions, PrisMax all versions prior to 3.x, The affected devices do not implement data-in-transit encryption (e.g., TLS/SSL) when configured to send treatment data to a PDMS (Patient Data Management System) or an EMR (Electronic Medical Record) system. An…

  • CVE-2020-12035MedJun 29, 2020
    risk 0.32cvss 4.9epss 0.00

    Baxter PrismaFlex all versions, PrisMax all versions prior to 3.x, The PrismaFlex device contains a hard-coded service password that provides access to biomedical information, device settings, calibration settings, and network configuration. This could allow an attacker to…