CVE-2014-5400

Published: Apr 3, 2015

Modified: Nov 3, 2025

PUBLISHED

Description

The installation component in Hospira MedNet before 6.1 places cleartext credentials in configuration files, which allows local users to obtain sensitive information by reading a file.

Vendor	Product	Versions
Hospira	MedNet	affected `0 - <= 5.8` unaffected `6.1`

Weaknesses (CWE)

CWE-260

References

https://www.cisa.gov/news-events/ics-advisories/icsa-15-090-03

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2015/icsa-15-090-03.json

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-5400

Description

Affected Products

Weaknesses (CWE)

References