Two Cybersecurity Issues Reported by CISA for Baxter Welch Allyn Devices

The US Cybersecurity & Infrastructure Security Agency (CISA) has reported two issues with medical devices manufactured by Baxter Welch Allyn.

The company’s Connex Spot Monitor can be exploited remotely through use of a default cryptographic key. CISA says “successful exploitation of this vulnerability could allow an attacker to modify device configuration and firmware data. Tampering with this data could lead to device compromise, resulting in impact and/or delay in patient care.”

Baxter has released a software update for all impacted devices.

To read the whole story, click here.

Related Topics