CVE-2017-12718

HIGH

Smiths-medical Medfusion 4000 Wireles... - Memory Corruption

Title source: rule

Description

A Classic Buffer Overflow issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. A third-party component used in the pump does not verify input buffer size prior to copying, leading to a buffer overflow, allowing remote code execution on the target device. The pump receives the potentially malicious input infrequently and under certain conditions, increasing the difficulty of exploitation.

Exploits (1)

exploitdb WORKING POC

by Scott Gayou · pythondoshardware

https://www.exploit-db.com/exploits/43776

View Code ZIP pw:eip

References (4)

[Third Party Advisory, US Government Resource] https://ics-cert.us-cert.gov/advisories/ICSMA-17-250-02A

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/101252

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/100665

[Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/43776/

Scores

CVSS v3 8.1

EPSS 0.2577

EPSS Percentile 96.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-119 CWE-120

Status published

Products (3)

smiths-medical/medfusion_4000_wireless_syringe_infusion_pump 1.1

smiths-medical/medfusion_4000_wireless_syringe_infusion_pump 1.5

smiths-medical/medfusion_4000_wireless_syringe_infusion_pump 1.6

Published Feb 15, 2018

Tracked Since Feb 18, 2026