Security Advisory

CVE-2025-0683

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-30 18:17:35

Last updated 2025-02-12 20:41:36

Assigner icscert

State PUBLISHED

Description

In its default configuration, Contec Health CMS8000 Patient Monitor transmits plain-text patient data to a hard-coded public IP address when a patient is hooked up to the monitor. This could lead to a leakage of confidential patient data to any device with that IP address or an attacker in a machine-in-the-middle scenario.

← Browse all CVEs View on cve.org ↗