Vulnerabilities > CVE-2007-6756 - Credentials Management vulnerability in Zoll Monitor/Defibrillator E/M/R

CVSS 4.9 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

local

low complexity

zoll

CWE-255

NVD

Published: 2014-08-12

Updated: 2017-09-08

Summary

ZOLL Defibrillator / Monitor M Series, E Series, and R Series have a default password for System Configuration mode, which allows physically proximate attackers to modify device configuration and cause a denial of service (adverse human health effects).

Vulnerable Configurations

Part	Description	Count
Hardware	Zoll Zoll Monitor/Defibrillator E Zoll Monitor/Defibrillator M Zoll Monitor/Defibrillator R	3

Common Weakness Enumeration (CWE)

CWE-255 - Credentials Management

References

http://www.zoll.com/WorkArea/DownloadAsset.aspx?id=10018
http://www.zoll.com/WorkArea/DownloadAsset.aspx?id=18473
http://www.zoll.com/WorkArea/DownloadAsset.aspx?id=2386
https://exchange.xforce.ibmcloud.com/vulnerabilities/95718