Contec Health Cms8000 Patient Monitor vulnerabilities
4 known vulnerabilities affecting contec_health/cms8000_patient_monitor.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
3
Severity breakdown
CRITICAL1HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-12248P1CRITICALCVSS 9.8ExploitedvFirmware version smart3250-2.6.27-wlan2.1.7.cramfsvFirmware version CMS7.820.075.08/0.74(0.75)+1 more2025-01-30
CVE-2024-12248 [CRITICAL] CWE-787 CVE-2024-12248: Contec Health CMS8000 Patient Monitor is vulnerable to an out-of-bounds write, which could allow an
Contec Health CMS8000 Patient Monitor is vulnerable to an out-of-bounds write, which could allow an attacker to send specially formatted UDP requests in order to write arbitrary data. This could result in remote code execution.
nvd
CVE-2025-0683P1MEDIUMCVSS 5.9ExploitedvAll versions2025-01-30
CVE-2025-0683 [MEDIUM] CWE-359 CVE-2025-0683: In its default configuration, Contec Health CMS8000 Patient Monitor transmits plain-text patient da
In its default configuration, Contec Health CMS8000 Patient Monitor transmits plain-text
patient data to a hard-coded public IP address when a patient is hooked
up to the monitor. This could lead to a leakage of confidential patient
data to any device with that IP address or an attacker in a
machine-in-the-middle scenario.
nvd
CVE-2025-0626P2HIGHCVSS 7.5ExploitedvAll versions2025-01-30
CVE-2025-0626 [HIGH] CWE-912 CVE-2025-0626: The "monitor" binary in the firmware of the affected product attempts to mount to a hard-coded, rout
The "monitor" binary in the firmware of the affected product attempts to mount to a hard-coded, routable IP address, bypassing existing device network settings to do so. The function also enables the network interface of the device if it is disabled. The function is triggered by attempting to update the device from the user menu. This could serve as a b
nvd
CVE-2025-1204P3HIGHCVSS 7.7v02025-02-25
CVE-2025-1204 [HIGH] CWE-912 CVE-2025-1204: The "update" binary in the firmware of the affected product sends attempts to mount to a hard-coded,
The "update" binary in the firmware of the affected product sends attempts to mount to a hard-coded, routable IP address, bypassing existing device network settings to do so. The function triggers if the 'C' button is pressed at a specific time during the boot process. If an attacker is able to control or impersonate this IP address, they could upload a
nvd