Skip to main content

Onetouch Ping Firmware

4 CVEs product

Monthly

CVE-2016-5686 CRITICAL Act Now

Johnson & Johnson Animas OneTouch Ping devices mishandle acknowledgements, which makes it easier for remote attackers to bypass authentication via a custom communication protocol. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Onetouch Ping Firmware
NVD
CVSS 3.0
9.8
EPSS
3.0%
CVE-2016-5086 CRITICAL Act Now

Johnson & Johnson Animas OneTouch Ping devices allow remote attackers to bypass authentication via replay attacks. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Onetouch Ping Firmware
NVD
CVSS 3.0
9.8
EPSS
3.0%
CVE-2016-5085 HIGH This Week

Johnson & Johnson Animas OneTouch Ping devices do not properly generate random numbers, which makes it easier for remote attackers to spoof meters by sniffing the network and then engaging in an. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Onetouch Ping Firmware
NVD
CVSS 3.0
7.5
EPSS
3.2%
CVE-2016-5084 HIGH This Week

Johnson & Johnson Animas OneTouch Ping devices do not use encryption for certain data, which might allow remote attackers to obtain sensitive information by sniffing the network. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Onetouch Ping Firmware
NVD
CVSS 3.0
7.5
EPSS
1.2%
EPSS 3% CVSS 9.8
CRITICAL Act Now

Johnson & Johnson Animas OneTouch Ping devices mishandle acknowledgements, which makes it easier for remote attackers to bypass authentication via a custom communication protocol. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Onetouch Ping Firmware
NVD
EPSS 3% CVSS 9.8
CRITICAL Act Now

Johnson & Johnson Animas OneTouch Ping devices allow remote attackers to bypass authentication via replay attacks. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Onetouch Ping Firmware
NVD
EPSS 3% CVSS 7.5
HIGH This Week

Johnson & Johnson Animas OneTouch Ping devices do not properly generate random numbers, which makes it easier for remote attackers to spoof meters by sniffing the network and then engaging in an. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Onetouch Ping Firmware
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Johnson & Johnson Animas OneTouch Ping devices do not use encryption for certain data, which might allow remote attackers to obtain sensitive information by sniffing the network. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Onetouch Ping Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy