Default credentials are used in the above listed BD Diagnostic Solutions products. If exploited, threat actors may be able to access, modify or delete data, including sensitive information such as protected health information (PHI) and personally identifiable information (PII). Exploitation of this vulnerability may allow an attacker to shut down or otherwise impact the availability of the system. Note: BD Synapsys™ Informatics
Solution is only in scope of
this vulnerability when
installed on a NUC server. BD Synapsys™
Informatics Solution installed
on a customer-provided virtual machine or on the BD Kiestra™ SCU hardware is
not in scope.
Metrics
Affected Vendors & Products
References
History
Tue, 17 Dec 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 17 Dec 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Default credentials are used in the above listed BD Diagnostic Solutions products. If exploited, threat actors may be able to access, modify or delete data, including sensitive information such as protected health information (PHI) and personally identifiable information (PII). Exploitation of this vulnerability may allow an attacker to shut down or otherwise impact the availability of the system. Note: BD Synapsys™ Informatics Solution is only in scope of this vulnerability when installed on a NUC server. BD Synapsys™ Informatics Solution installed on a customer-provided virtual machine or on the BD Kiestra™ SCU hardware is not in scope. | |
Weaknesses | CWE-1392 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: BD
Published: 2024-12-17T15:16:44.982Z
Updated: 2024-12-17T15:35:43.490Z
Reserved: 2024-10-28T18:44:14.990Z
Link: CVE-2024-10476

Updated: 2024-12-17T15:35:38.507Z

Status : Received
Published: 2024-12-17T16:15:23.390
Modified: 2024-12-17T16:15:23.390
Link: CVE-2024-10476

No data.