Filtered by vendor Draeger Subscriptions
Total 5 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-28112 1 Draeger 4 X-dock 5300, X-dock 6300, X-dock 6600 and 1 more 2024-11-21 8.8 High
Draeger X-Dock Firmware before 03.00.13 has Active Debug Code on a debug port, leading to remote code execution by an authenticated attacker.
CVE-2021-28111 1 Draeger 4 X-dock 5300, X-dock 6300, X-dock 6600 and 1 more 2024-11-21 8.8 High
Draeger X-Dock Firmware before 03.00.13 has Hard-Coded Credentials, leading to remote code execution by an authenticated attacker.
CVE-2018-19014 1 Draeger 8 Delta Xl, Delta Xl Firmware, Infinity Delta and 5 more 2024-11-21 N/A
Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. Log files are accessible over an unauthenticated network connection. By accessing the log files, an attacker is able to gain insights about internals of the patient monitor, the location of the monitor, and wired network configuration.
CVE-2018-19012 1 Draeger 8 Delta Xl, Delta Xl Firmware, Infinity Delta and 5 more 2024-11-21 N/A
Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. Via a specific dialog it is possible to break out of the kiosk mode and reach the underlying operating system. By breaking out of the kiosk mode, an attacker is able to take control of the operating system.
CVE-2018-19010 1 Draeger 8 Delta Xl, Delta Xl Firmware, Infinity Delta and 5 more 2024-11-21 N/A
Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Infinity Explorer C700, all versions. A malformed network packet may cause the monitor to reboot. By repeatedly sending the malformed network packet, an attacker may be able to disrupt patient monitoring by causing the monitor to repeatedly reboot until it falls back to default configuration and loses network connectivity.