CISA and FDA have warned about serious vulnerabilities in Contec CMS8000 and Epsimed MN-120 patient monitors, notably CVE-2025-0626, which has a CVSS score of 7.7. This vulnerability allows remote access requests to a hard-coded IP address, potentially serving as a backdoor for malicious activities. Alongside this, other issues expose patient data and allow for arbitrary data writing. Devices with specific firmware versions are impacted, raising significant concerns about patient confidentiality and device security.
The affected product sends out remote access requests to a hard-coded IP address, bypassing existing device network settings to do so.
The reverse backdoor provides automated connectivity to a hard-coded IP address from the Contec CMS8000 devices, allowing the device to download and execute unverified remote files.
Collection
[
|
...
]