CVE-2022-26393

MEDIUM

Baxter Spectrum WBM - Format String

Title source: llm

Description

The Baxter Spectrum WBM is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive information or cause a Denial of Service (DoS) on the WBM.

References (2)

[Broken Link] https://www.us-cert.gov/ics/advisories/icsma-22-xxx-xx

[Third Party Advisory, US Government Resource] https://www.cisa.gov/uscert/ics/advisories/icsma-22-251-01

Scores

CVSS v3 5.0

EPSS 0.0022

EPSS Percentile 43.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

Details

CWE

CWE-134

Status published

Products (4)

baxter/baxter_spectrum_iq_35700bax3_firmware

baxter/sigma_spectrum_35700bax2_firmware

baxter/sigma_spectrum_35700bax_firmware

baxter/spectrum_wireless_battery_module_firmware 20d29

Published Sep 09, 2022

Tracked Since Feb 18, 2026