Remote Keyboard Input Access Vulnerability in ApexPro Telemetry Server, CARESCAPE Telemetry Server, Clinical Information Center, and CARESCAPE Central Station

Remote Keyboard Input Access Vulnerability in ApexPro Telemetry Server, CARESCAPE Telemetry Server, Clinical Information Center, and CARESCAPE Central Station

CVE-2020-6964 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X and CARESCAPE Central Station (CSCS) Versions 2.X, the integrated service for keyboard switching of the affected devices could allow attackers to obtain remote keyboard input access without authentication over the network.

Learn more about our Cis Benchmark Audit For Server Software.