Description
The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24), when used with a Baxter Spectrum v8.x (model 35700BAX2) in a factory-default wireless configuration enables an FTP service with hard-coded credentials.
Scores
CVSS v3
9.8
EPSS
0.0028
EPSS Percentile
51.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-259
CWE-798
Status
published
Products (1)
baxter/sigma_spectrum_infusion_system_firmware
8.0
Published
Jun 29, 2020
Tracked Since
Feb 18, 2026