VYPR
Vendor

Hillrom

Products
7
CVEs
5
Across products
10
Status
Private

Products

7

Recent CVEs

5
  • CVE-2022-26389HigFeb 7, 2025
    risk 0.50cvss 7.7epss 0.00

    An improper access control vulnerability may allow privilege escalation.This issue affects:  * ELI 380 Resting Electrocardiograph: Versions 2.6.0 and prior;  * ELI 280/BUR280/MLBUR 280 Resting Electrocardiograph: Versions 2.3.1 and prior;  * ELI 250c/BUR 250c…

  • CVE-2022-26388MedFeb 7, 2025
    risk 0.42cvss 6.4epss 0.00

    A use of hard-coded password vulnerability may allow authentication abuse.This issue affects ELI 380 Resting Electrocardiograph: Versions 2.6.0 and prior; ELI 280/BUR280/MLBUR 280 Resting Electrocardiograph: Versions 2.3.1 and prior; ELI 250c/BUR 250c Resting…

  • CVE-2021-43935Dec 15, 2021
    risk 0.00cvss epss 0.01

    The impacted products, when configured to use SSO, are affected by an improper authentication vulnerability. This vulnerability allows the application to accept manual entry of any active directory (AD) account provisioned in the application without supplying a password,…

  • CVE-2021-27410Jun 11, 2021
    risk 0.00cvss epss 0.02

    The affected product is vulnerable to an out-of-bounds write, which may result in corruption of data or code execution on the Welch Allyn medical device management tools (Welch Allyn Service Tool: versions prior to v1.10, Welch Allyn Connex Device Integration Suite – Network…

  • CVE-2021-27408Jun 11, 2021
    risk 0.00cvss epss 0.02

    The affected product is vulnerable to an out-of-bounds read, which can cause information leakage leading to arbitrary code execution if chained to the out-of-bounds write vulnerability on the Welch Allyn medical device management tools (Welch Allyn Service Tool: versions prior…