CVE-2019-10962 Information
Feb 14, 2021
cve
Description
BD Alaris Gateway versions 1.0.131.1.3 Build 101.1.3 MR Build 111.1.5 and 1.1.6 The web browser user interface on the Alaris Gateway Workstation does not prevent an attacker with knowledge of the IP address of the Alaris Gateway Workstation terminal to gain access to the status and configuration information of the device.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Reference
http://www.securityfocus.com/bid/108763 https://ics-cert.us-cert.gov/advisories/ICSMA-19-164-01
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
LOW
Availability Impact
NONE
Base Score
NONE
Base Severity
5.3
Share on: