QwikSec

Security Database

CVE

CWE

Training

CVE-2014-5401

Published: Mar 26, 2019

Modified: Nov 3, 2025

PUBLISHED

Description

Hospira MedNet software version 5.8 and prior uses vulnerable versions of the JBoss Enterprise Application Platform software that may allow unauthenticated users to execute arbitrary code on the target system. Hospira has developed a new version of the MedNet software, MedNet 6.1. Existing versions of MedNet can be upgraded to MedNet 6.1.

Vendor	Product	Versions
Hospira	MedNet	affected `0 - <= 5.8` unaffected `6.1`

Weaknesses (CWE)

References

https://www.cisa.gov/news-events/ics-advisories/icsa-15-090-03

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2015/icsa-15-090-03.json

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.