CVE-2020-12039

LOW Year: 2020
CVSS v3 Score
2.4
Low
CVSS v2 Score
2.1
Low
Weakness Type
CWE-259
View all →

Vulnerability Description

Baxter Sigma Spectrum Infusion Pumps Sigma Spectrum Infusion System v's6.x model 35700BAX & Baxter Spectrum Infusion System v's8.x model 35700BAX2 contain hardcoded passwords when physically entered on the keypad provide access to biomedical menus including device settings, view calibration values, network configuration of Sigma Spectrum WBM if installed.

Related Vulnerabilities

CVE-2022-27172

MEDIUM
CVSS:4.3(Medium)

A hard-coded password vulnerability exists in the console infactory functionality of InHand Networks InRouter302 V3.5.37. A specially-crafted network request can lead to privileged operation execution...

CWE-2592022

CVE-2023-29103

MEDIUM
CVSS:4.3(Medium)

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1), SIMATIC Cloud Connect 7 CC712 (All versions < V2.1), SIMATIC Cloud Connect 7 CC716 (All versions >= ...

CWE-2592023

CVE-2024-2197

LOW
CVSS:4.3(Medium)

The Chirp Access app contains a hard-coded password, BEACON_PASSWORD. An attacker within Bluetooth range could change configuration settings within the Bluetooth beacon, effectively disabling the appl...

CWE-2592024

CVE-2024-26196

MEDIUM
CVSS:4.3(Medium)

Microsoft Edge for Android (Chromium-based) Information Disclosure Vulnerability

CWE-2592024

CVE-2025-2556

MEDIUM
CVSS:4.3(Medium)

A vulnerability classified as problematic was found in Audi UTR Dashcam 2.0. Affected by this vulnerability is an unknown functionality of the component Video Stream Handler. The manipulation leads to...

CWE-2592025

CVE-2024-32741

CRITICAL
CVSS:10.0(Critical)

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affected device contains hard coded password which is used for the privileged system user `root` and for the boot load...

CWE-2592024