CVE-2020-15484
HIGHNiscomed M1000 Multipara Patient Monitor Firmware - Cleartext Storage of Sensitive Information
Title source: llmDescription
An issue was discovered on Nescomed Multipara Monitor M1000 devices. The internal storage of the underlying Linux system stores data in cleartext, without integrity protection against tampering.
References (2)
Core 2
Core References
Product x_refsource_misc
https://www.niscomed.com/multipara-monitor.html
Third Party Advisory x_refsource_misc
https://payatu.com/advisory/lack-of-medical-data-encryption-in-niscomed-patient-monitor
Scores
CVSS v3
7.5
EPSS
0.0083
EPSS Percentile
52.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-312
Status
published
Products (1)
niscomed/m1000_multipara_patient_monitor_firmware
Published
Aug 26, 2020
Tracked Since
Feb 18, 2026