Medical Device Software Vulnerabilities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Vendor

Identifying all affected vendors is a good starting point for an overview. This makes it possible to determine an homogeneous landscape or the most important hotspots in heterogeneous landscapes.

Product

oretnom23 Hospitals Patient Records Management Sys ...16
Oracle Healthcare Data Repository10
Philips Patient Information Center iX10
Oracle Health Sciences Information Manager9
Oracle Healthcare Foundation9

Grouping vulnerabilities by products helps to get an overview. This makes it possible to determine an homogeneous landscape or the most important hotspots in heterogeneous landscapes.

Remediation

Official Fix115
Temporary Fix0
Workaround12
Unavailable1
Not Defined126

Vendors and researchers are eager to find countermeasures to mitigate security vulnerabilities. These can be distinguished between multiple forms and levels of remediation which influence risks differently.

Exploitability

High10
Functional2
Proof-of-Concept12
Unproven2
Not Defined228

Researcher and attacker which are looking for security vulnerabilities try to exploit them for academic purposes or personal gain. The level and quality of exploitability can be distinguished to determine simplicity and strength of attacks.

Access Vector

Not Defined0
Physical14
Local16
Adjacent31
Network193

The approach a vulnerability it becomes important to use the expected access vector. This is typically via the network, local, or physically even.

Authentication

Not Defined0
High12
Low62
None180

To exploit a vulnerability a certail level of authentication might be required. Vulnerabilities without such a requirement are much more popular.

User Interaction

Not Defined0
Required46
None208

Some attack scenarios require some user interaction by a victim. This is typical for phishing, social engineering and cross site scripting attacks.

C3BM Index

Our unique C3BM Index (CVSSv3 Base Meta Index) cumulates the CVSSv3 Meta Base Scores of all entries over time. Comparing this index to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

CVSSv3 Base

≤10
≤20
≤31
≤423
≤517
≤639
≤761
≤868
≤926
≤1019

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤20
≤32
≤425
≤515
≤654
≤753
≤863
≤924
≤1018

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤21
≤38
≤418
≤530
≤630
≤763
≤869
≤915
≤1020

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤31
≤42
≤57
≤615
≤733
≤824
≤918
≤1029

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤74
≤81
≤96
≤100

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤52
≤61
≤710
≤83
≤93
≤105

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

Exploit 0-day

<1k40
<2k64
<5k71
<10k22
<25k32
<50k12
<100k5
≥100k8

The moderation team is working with the threat intelligence team to determine prices for exploits. Our unique algorithm is used to identify the 0-day prices for an exploit, before it got distributed or became public. Calculated prices are aligned to prices disclosed by vulnerability broker and compared to prices we see on exploit markets.

Exploit Today

<1k173
<2k35
<5k28
<10k4
<25k12
<50k2
<100k0
≥100k0

The 0-day prices do not consider time-relevant factors. The today price does reflect price impacts like disclosure of vulnerability details, alternative exploits, availability of countermeasures. These dynamic aspects might decrease the exploit prices over time. Under certain circumstances this happens very fast.

Exploit Market Volume

Our unique calculation of exploit prices makes it possible to forecast the expected exploit market volume. The calculated prices for all possible 0-day expoits are cumulated for this task. Comparing the volume to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

🔴 CTI Activities

Our unique Cyber Threat Intelligence aims to determine the ongoing research of actors to anticipiate their acitivities. Observing exploit markets on the Darknet, discussions of vulnerabilities on mailinglists, and exchanges on social media makes it possible to identify planned attacks. Monitored actors and activities are classified whether they are offensive or defensive. They are also weighted as some actors are well-known for certain products and technologies. And some of their disclosures might contain more or less details about technical aspects and personal context. The world map highlights active actors in real-time.

Affected Products (135): Baxter PrismaFlex, Baxter PrisMax, Baxter SIGMA Spectrum Infusion System, Baxter Spectrum Infusion System, BD Alaris 8015 PC Unit, BD Alaris 8015 Point of Care, BD Alaris CC, BD Alaris Gateway, BD Alaris Gateway Workstation, BD Alaris GH, BD Alaris GS, BD Alaris Systems Manager, BD Alaris TIVA, BeaconMedaes Scroll Medical Air Systems, BlackBerry QNX OS for Medical, BlackBerry QNX OS for Safety, BlackBerry QNX Software Development Platform, BMC Medical Luna CPAP Machines, Chikista Patient Management Software, Chikitsa Patient Management System, Draeger X-Dock, Dräger Infinity Delta, Dräger Infinity Delta XL, Dräger Infinity Explorer C700, Dräger Infinity Kappa, GE Healthcare CADStream Server, GE Healthcare Centricity Analytics Server, GE Healthcare Centricity Clinical Archive Audit Trail Repository, GE Healthcare Centricity DMS, GE Healthcare Centricity Image Vault, GE Healthcare Centricity PACS, GE Healthcare Centricity PACS-IW, GE Healthcare Centricity PACS Workstation, GE Healthcare Discovery 530C, GE Healthcare Discovery NM 750b, GE Healthcare Discovery VH, GE Healthcare Discovery XR656, GE Healthcare Discovery XR656 G2, GE Healthcare eNTEGRA P, GE Healthcare Infinia II, GE Healthcare Millennium, GE Healthcare Optima, GE Healthcare Optima MR360, GE Healthcare Precision MPi, GE Healthcare Precision THUNIS-800+, GE Healthcare Revolution XQi, GE R, GE Voluson S8, GE Healthcare AW, GE Healthcare BrightSpeed, GE Healthcare Brivo, GE Healthcare DiscoveryRevolution EVO, GE Healthcare EchoPAC, GE Healthcare Image Vault, GE Healthcare Infina, GE Healthcare Innova, GE Healthcare LOGIQ, GE Healthcare Optima, GE Healthcare PETrace, GE Healthcare PET Discovery IQ, GE Healthcare Signa, GE Healthcare Ventri, GE Healthcare Vivid, GE Healthcare Voluson, GE Healthcare Xeleris, Hamilton Medical T1-Ventilator, Hillrom Welch Allyn Medical Device Management Tools, Hospira Lifecare PCA Infusion Pump, Hospira LifeCare PCA Infusion System, Hospira Plum A+3 Infusion System, Hospira Plum A+ Infusion System, Hospira Symbiq Infusion System, Hospital Patient Record Management System, Infusionsoft Gravity Forms, IntelliVue Patient Monitor, Interactive Medical Drawing of Human Body Plugin, IP Infusion OcNOS, IP Infusion ZebOS, iTriage Health, Kinfusion Com Sportfusion, LifePoint Informatics Patient Portal, Medical Center Columbia WebSite, Medical Devices, Medical Store Management System, Medtronic 24950 MyCareLink Monitor, Medtronic 24952 MyCareLink Monitor, Medtronic MyCareLink Patient Monitor, Medtronic Paradigm wireless insulin pump, Medtronic Smart Model 25000 Patient Reader, Oracle Healthcare Analytics Data Integration, Oracle Healthcare Data Repository, Oracle Healthcare Foundation, Oracle Healthcare Master Person Index, Oracle Healthcare Translational Research, Oracle Health Sciences Argus Safety, Oracle Health Sciences Central Coding, Oracle Health Sciences Clinical Development Analytics, Oracle Health Sciences Clinical Development Center, Oracle Health Sciences Data Management Workbench, Oracle Health Sciences Empirica Inspections, Oracle Health Sciences Empirica Signal, Oracle Health Sciences Empirica Study, Oracle Health Sciences InForm, Oracle Health Sciences Information Manager, Oracle Health Sciences InForm CRF Submit, Oracle Health Sciences InForm Publisher, oretnom23 Hospitals Patient Records Management System, PacerCMS, Pharmacy Medical Store and Sale Point, Philips e-Alert, Philips e-Alert Unit, Philips Efficia CM Series, Philips IntelliSpace Cardiovascular, Philips IntelliSpace PACS, Philips IntelliSpace Portal, Philips IntelliVue Patient Monitor, Philips iSite, Philips iSite PACS, Philips Patient Information Center iX, Philips PerformanceBridge Focal Point, Philips Xcelera, Philips Healthcare Tasy Electronic Medical Record, Smiths-Medical Medfusion 4000 Wireless Syringe Infusion Pump, SOOIL AnyDana-A, SOOIL AnyDana-i, SOOIL DiabecareRS, SOOIL Diabecare RS, SourceCodester Clinics Patient Management System, SourceCodester Electronic Medical Records System, Sourcecodester Hospitals Patient Records Management System, SourceCodester Hospital Patient Record Management System, SourceCodester Medical Hub Directory Site, Sourcecodtester Hospital Patient Records Management System, St. Jude Medical Merlin@home, Vyaire Medical CareFusion Upgrade Utility

PublishedBaseTempVulnerabilityProductExpRemCTICVE
08/06/20226.35.7SourceCodester Electronic Medical Records System UPDATE Statement register.php sql injectionElectronic Medical Records SystemProof-of-ConceptNot Defined4.91CVE-2022-2693
08/05/20226.35.7SourceCodester Electronic Medical Records System POST Request sql injectionElectronic Medical Records SystemProof-of-ConceptNot Defined0.76CVE-2022-2676
07/19/20225.55.3Oracle Health Sciences Information Manager Health Policy Engine denial of serviceHealth Sciences Information ManagerNot DefinedOfficial Fix0.04CVE-2021-36374
07/19/20226.56.2Oracle Health Sciences Information Manager Health Policy Engine denial of serviceHealth Sciences Information ManagerNot DefinedOfficial Fix0.07CVE-2022-23437
07/19/20227.57.2Oracle Healthcare Foundation Upload Service denial of serviceHealthcare FoundationNot DefinedOfficial Fix0.03CVE-2021-33813
07/19/20224.84.6Oracle Health Sciences Data Management Workbench User Interface unknown vulnerabilityHealth Sciences Data Management WorkbenchNot DefinedOfficial Fix0.03CVE-2021-29425
07/19/20226.56.2Oracle Health Sciences Data Management Workbench User Interface information disclosureHealth Sciences Data Management WorkbenchNot DefinedOfficial Fix0.05CVE-2022-21518
07/19/20226.66.3Oracle Health Sciences Data Management Workbench User Interface Privilege EscalationHealth Sciences Data Management WorkbenchNot DefinedOfficial Fix0.00CVE-2021-44832
07/19/20227.26.9Oracle Health Sciences Data Management Workbench User Interface Privilege EscalationHealth Sciences Data Management WorkbenchNot DefinedOfficial Fix0.02CVE-2021-23337
07/19/20227.37.0Oracle Health Sciences Data Management Workbench User Interface Remote Code ExecutionHealth Sciences Data Management WorkbenchNot DefinedOfficial Fix0.03CVE-2019-10086
07/19/20227.57.2Oracle Health Sciences Empirica Signal Web Services denial of serviceHealth Sciences Empirica SignalNot DefinedOfficial Fix0.07CVE-2020-36518
07/04/20228.17.9SourceCodester Clinics Patient Management System Login Page index.php sql injectionClinics Patient Management SystemProof-of-ConceptNot Defined0.38CVE-2022-2298
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.03CVE-2022-32341
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.16CVE-2022-32340
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.03CVE-2022-32352
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.02CVE-2022-32351
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.03CVE-2022-32350
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.03CVE-2022-32349
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.02CVE-2022-32348
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.03CVE-2022-32347
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System view_room.php sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.02CVE-2022-32346
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System manage_room.php sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.03CVE-2022-32345
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.03CVE-2022-32344
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System manage_room_type.php sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.02CVE-2022-32343
06/15/20226.36.1oretnom23 Hospitals Patient Records Management System view_room_type.php sql injectionHospitals Patient Records Management SystemNot DefinedNot Defined0.03CVE-2022-32342

229 more entries are not shown

Do you know our Splunk app?

Download it now for free!