Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Software_development_kit
(Hillrom)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-06-11 | CVE-2021-27410 | The affected product is vulnerable to an out-of-bounds write, which may result in corruption of data or code execution on the Welch Allyn medical device management tools (Welch Allyn Service Tool: versions prior to v1.10, Welch Allyn Connex Device Integration Suite – Network Connectivity Engine (NCE): versions prior to v5.3, Welch Allyn Software Development Kit (SDK): versions prior to v3.2, Welch Allyn Connex Central Station (CS): versions prior to v1.8.6, Welch Allyn Service Monitor:... | Connex_central_station, Connex_device_integration_suite_network_connectivity_engine, Connex_integrated_wall_system, Connex_spot_monitor, Connex_vital_signs_monitor, Service_monitor, Service_tool, Software_development_kit, Spot_vital_signs_4400 | 9.8 | ||
| 2021-06-11 | CVE-2021-27408 | The affected product is vulnerable to an out-of-bounds read, which can cause information leakage leading to arbitrary code execution if chained to the out-of-bounds write vulnerability on the Welch Allyn medical device management tools (Welch Allyn Service Tool: versions prior to v1.10, Welch Allyn Connex Device Integration Suite – Network Connectivity Engine (NCE): versions prior to v5.3, Welch Allyn Software Development Kit (SDK): versions prior to v3.2, Welch Allyn Connex Central Station... | Connex_central_station, Connex_device_integration_suite_network_connectivity_engine, Connex_integrated_wall_system, Connex_spot_monitor, Connex_vital_signs_monitor, Service_monitor, Service_tool, Software_development_kit, Spot_vital_signs_4400 | 7.5 |