CVE-2015-3459
CRITICAL
10.0
CVSS Severity Score
Vulnerability Description
The communication module on the Hospira LifeCare PCA Infusion System before 7.0 does not require authentication for root TELNET sessions, which allows remote attackers to modify the pump configuration via unspecified commands.
Affected Platforms (CPE)
💻
Hospira
Lifecare Pcainfusion Firmware
<= 5.0🔌
Hospira
Lifecare Pca3
All versions🔌
Hospira