CVE-2022-47376 Information

Description

The Alaris Infusion Central software versions 1.1 to 1.3.2 may contain a recoverable password after the installation. No patient health data is stored in the database although some site installations may choose to store personal data.

Reference

https://www.bd.com/en-us/about-bd/cybersecurity/bulletin/alaris-infusion-central-recoverable-password-vulnerability