CareFusion Pyxis SupplyStation 8.1 with hardware test tool before 1.0.16 has a hardcoded service password, which makes it easier for remote attackers to obtain access via unspecified vectors. Rated critical severity (CVSS 9.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Authentication Bypass
Pyxis Supplystation
NVD
CVSS 2.0
9.7
EPSS
0.4%