Skip to main content

Connex Vital Signs Monitor

2 CVEs product

Monthly

CVE-2021-27410 CRITICAL Act Now

The affected product is vulnerable to an out-of-bounds write, which may result in corruption of data or code execution on the Welch Allyn medical device management tools (Welch Allyn Service Tool:. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Memory Corruption Connex Central Station Connex Device Integration Suite Network Connectivity Engine +7
NVD
CVSS 3.1
9.8
EPSS
1.9%
CVE-2021-27408 HIGH This Week

The affected product is vulnerable to an out-of-bounds read, which can cause information leakage leading to arbitrary code execution if chained to the out-of-bounds write vulnerability on the Welch. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Information Disclosure Connex Central Station Connex Device Integration Suite Network Connectivity Engine +7
NVD
CVSS 3.1
7.5
EPSS
1.7%
EPSS 2% CVSS 9.8
CRITICAL Act Now

The affected product is vulnerable to an out-of-bounds write, which may result in corruption of data or code execution on the Welch Allyn medical device management tools (Welch Allyn Service Tool:. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Memory Corruption +9
NVD
EPSS 2% CVSS 7.5
HIGH This Week

The affected product is vulnerable to an out-of-bounds read, which can cause information leakage leading to arbitrary code execution if chained to the out-of-bounds write vulnerability on the Welch. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Information Disclosure +9
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy