Skip to main content

Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware

5 CVEs product

Monthly

CVE-2021-38400 MEDIUM This Month

An attacker with physical access to Boston Scientific Zoom Latitude Model 3120 can remove the hard disk drive or create a specially crafted USB to extract the password hash for brute force reverse. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware
NVD
CVSS 3.1
6.8
EPSS
0.1%
CVE-2021-38398 MEDIUM This Month

The affected device uses off-the-shelf software components that contain unpatched vulnerabilities. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Zoom Latitude Programming System Model 3120 Firmware Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware
NVD
CVSS 3.1
6.8
EPSS
0.4%
CVE-2021-38396 MEDIUM This Month

The programmer installation utility does not perform a cryptographic authenticity or integrity checks of the software on the flash drive. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware
NVD
CVSS 3.1
6.8
EPSS
0.2%
CVE-2021-38394 MEDIUM This Month

An attacker with physical access to the device can extract the binary that checks for the hardware key and reverse engineer it, which could be used to create a physical duplicate of a valid hardware. Rated medium severity (CVSS 6.4), this vulnerability is no authentication required. No vendor patch available.

Information Disclosure Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware
NVD
CVSS 3.1
6.4
EPSS
0.2%
CVE-2021-38392 HIGH This Week

A skilled attacker with physical access to the affected device can gain access to the hard disk drive of the device to change the telemetry region and could use this setting to interrogate or program. Rated high severity (CVSS 7.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware
NVD
CVSS 3.1
7.6
EPSS
0.2%
EPSS 0% CVSS 6.8
MEDIUM This Month

An attacker with physical access to Boston Scientific Zoom Latitude Model 3120 can remove the hard disk drive or create a specially crafted USB to extract the password hash for brute force reverse. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

The affected device uses off-the-shelf software components that contain unpatched vulnerabilities. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Zoom Latitude Programming System Model 3120 Firmware Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

The programmer installation utility does not perform a cryptographic authenticity or integrity checks of the software on the flash drive. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware
NVD
EPSS 0% CVSS 6.4
MEDIUM This Month

An attacker with physical access to the device can extract the binary that checks for the hardware key and reverse engineer it, which could be used to create a physical duplicate of a valid hardware. Rated medium severity (CVSS 6.4), this vulnerability is no authentication required. No vendor patch available.

Information Disclosure Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware
NVD
EPSS 0% CVSS 7.6
HIGH This Week

A skilled attacker with physical access to the affected device can gain access to the hard disk drive of the device to change the telemetry region and could use this setting to interrogate or program. Rated high severity (CVSS 7.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Zoom Latitude Pogrammer Recorder Monitor 3120 Firmware
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy