Vulnerabilities > Contechealth

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-13	CVE-2022-36385	Unspecified vulnerability in Contechealth Cms8000 Firmware A threat actor with momentary access to the device can plug in a USB drive and perform a malicious firmware update, resulting in permanent changes to device functionality. low complexity contechealth	6.8
2022-09-13	CVE-2022-38069	Use of Hard-coded Credentials vulnerability in Contechealth Cms8000 Firmware Multiple globally default credentials exist across all CMS8000 devices, that once exposed, allow a threat actor with momentary physical access to gain privileged access to any device. low complexity contechealth CWE-798	6.1
2022-09-13	CVE-2022-38100	Unspecified vulnerability in Contechealth Cms8000 Firmware The CMS800 device fails while attempting to parse malformed network data sent by a threat actor. network low complexity contechealth	7.5
2022-09-13	CVE-2022-38453	Unspecified vulnerability in Contechealth Cms8000 Firmware Multiple binary application files on the CMS8000 device are compiled with 'not stripped' and 'debug_info' compilation settings. local low complexity contechealth	4.4
2022-09-13	CVE-2022-3027	Unspecified vulnerability in Contechealth Cms8000 Firmware The CMS8000 device does not properly control or sanitize the SSID name of a new Wi-Fi access point. low complexity contechealth	5.7

Vulnerabilities > Contechealth {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Contechealth"}]}