CVE-2021-27408

{"id": "CVE-2021-27408", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2021-06-11T17:15:10.637", "references": [{"url": "https://us-cert.cisa.gov/ics/advisories/icsma-21-152-01", "tags": ["Mitigation", "Third Party Advisory", "US Government Resource"], "source": "ics-cert@hq.dhs.gov"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "ics-cert@hq.dhs.gov", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "The affected product is vulnerable to an out-of-bounds read, which can cause information leakage leading to arbitrary code execution if chained to the out-of-bounds write vulnerability on the Welch Allyn medical device management tools (Welch Allyn Service Tool: versions prior to v1.10, Welch Allyn Connex Device Integration Suite \u2013 Network Connectivity Engine (NCE): versions prior to v5.3, Welch Allyn Software Development Kit (SDK): versions prior to v3.2, Welch Allyn Connex Central Station (CS): versions prior to v1.8.6, Welch Allyn Service Monitor: versions prior to v1.7.0.0, Welch Allyn Connex Vital Signs Monitor (CVSM): versions prior to v2.43.02, Welch Allyn Connex Integrated Wall System (CIWS): versions prior to v2.43.02, Welch Allyn Connex Spot Monitor (CSM): versions prior to v1.52, Welch Allyn Spot Vital Signs 4400 Device (Spot 4400) / Welch Allyn Spot 4400 Vital Signs Extended Care Device: versions prior to v1.11.00)."}, {"lang": "es", "value": "El producto afectado es vulnerable a una lectura fuera de l\u00edmites, lo que puede causar un filtrado de informaci\u00f3n que conlleve una ejecuci\u00f3n de c\u00f3digo arbitrario si se encadena con la vulnerabilidad de escritura fuera de l\u00edmites de Welch Allyn medical device management tools (Welch Allyn Service Tool: versiones anteriores a v1.10, Welch Allyn Connex Device Integration Suite - Network Connectivity Engine (NCE): versiones anteriores a v5.3, Welch Allyn Software Development Kit (SDK): versiones anteriores a v3. 2, Welch Allyn Connex Central Station (CS): versiones anteriores a v1.8.6, Welch Allyn Service Monitor: versiones anteriores a v1.7.0.0, Welch Allyn Connex Vital Signs Monitor (CVSM): versiones anteriores a v2.43.02, Welch Allyn Connex Integrated Wall System (CIWS): versiones anteriores a v2. 43.02, Welch Allyn Connex Spot Monitor (CSM): versiones anteriores a v1.52, Welch Allyn Spot Vital Signs 4400 Device (Spot 4400) / Welch Allyn Spot 4400 Vital Signs Extended Care Device: versiones anteriores a v1.11.00)"}], "lastModified": "2021-06-29T20:57:35.103", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hillrom:connex_central_station:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C49585B9-3AA0-42AB-9182-77152BAFA37D", "versionEndExcluding": "1.8.6"}, {"criteria": "cpe:2.3:a:hillrom:connex_device_integration_suite_network_connectivity_engine:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C24A4F7-EEA2-4FA8-9F55-77E1656B2E81", "versionEndExcluding": "5.3"}, {"criteria": "cpe:2.3:a:hillrom:connex_integrated_wall_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "895DC8BC-529D-4125-A55F-298B70E18007", "versionEndExcluding": "2.43.02"}, {"criteria": "cpe:2.3:a:hillrom:connex_spot_monitor:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB9BF71D-0C66-4EE0-A25E-44C15A98CF1B", "versionEndExcluding": "1.52"}, {"criteria": "cpe:2.3:a:hillrom:connex_vital_signs_monitor:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D22AECD4-34FE-45D0-AD50-9F1B269578B2", "versionEndExcluding": "2.43.02"}, {"criteria": "cpe:2.3:a:hillrom:service_monitor:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D618609-3AE0-47F3-A862-7888C3FBCB98", "versionEndExcluding": "1.7.0.0"}, {"criteria": "cpe:2.3:a:hillrom:service_tool:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2B7E63E-27FA-4C03-9039-1F7C47B7A09D", "versionEndExcluding": "1.10"}, {"criteria": "cpe:2.3:a:hillrom:software_development_kit:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "607AE812-A7F3-4705-BF29-2CB3A6B5A91B", "versionEndExcluding": "3.2"}, {"criteria": "cpe:2.3:a:hillrom:spot_vital_signs_4400:*:*:*:*:-:*:*:*", "vulnerable": true, "matchCriteriaId": "C7CF411D-E942-4807-A0D3-4154514A0E7C", "versionEndExcluding": "1.11.00"}, {"criteria": "cpe:2.3:a:hillrom:spot_vital_signs_4400:*:*:*:*:extended_care:*:*:*", "vulnerable": true, "matchCriteriaId": "2BAFF889-0D46-403F-89AA-C61F7DEADE69", "versionEndExcluding": "1.11.00"}], "operator": "OR"}]}], "sourceIdentifier": "ics-cert@hq.dhs.gov"}