Vulnerability: Passwords Stored in Configuration File in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump

CVE-2017-12723 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

A Password in Configuration File issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. The pump stores some passwords in the configuration file, which are accessible if the pump is configured to allow external communications.

Learn more about our External Network Penetration Testing.