CVE-2024-12248

Contec Health CMS8000 Patient Monitor is vulnerable to an out-of-bounds write, which could allow an attacker to send specially formatted UDP requests in order to write arbitrary data. This could result in remote code execution.
Configurations

No configuration.

History

31 Jan 2025, 17:15

Type Values Removed Values Added
Summary
  • (es) El producto afectado es vulnerable a una escritura fuera de los límites, que podría permitir a un atacante enviar solicitudes UDP con un formato especial para escribir datos arbitrarios. Esto podría provocar la ejecución remota de código.
Summary (en) The affected product is vulnerable to an out-of-bounds write, which could allow an attacker to send specially formatted UDP requests in order to write arbitrary data. This could result in remote code execution. (en) Contec Health CMS8000 Patient Monitor is vulnerable to an out-of-bounds write, which could allow an attacker to send specially formatted UDP requests in order to write arbitrary data. This could result in remote code execution.
References
  • () https://www.fda.gov/medical-devices/safety-communications/cybersecurity-vulnerabilities-certain-patient-monitors-contec-and-epsimed-fda-safety-communication -
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8

30 Jan 2025, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-01-30 19:15

Updated : 2025-01-31 17:15


NVD link : CVE-2024-12248

Mitre link : CVE-2024-12248

CVE.ORG link : CVE-2024-12248


JSON object : View

Products Affected

No product.

CWE
CWE-787

Out-of-bounds Write