CVE-2020-10598
Summary
| CVE | CVE-2020-10598 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-04-01 21:15:00 UTC |
| Updated | 2021-09-14 13:35:00 UTC |
| Description | In BD Pyxis MedStation ES System v1.6.1 and Pyxis Anesthesia (PAS) ES System v1.6.1, a restricted desktop environment escape vulnerability exists in the kiosk mode functionality of affected devices. Specially crafted inputs could allow the user to escape the restricted environment, resulting in access to sensitive data. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Bd | Pyxis Anesthesia Station Es | - | All | All | All |
| Hardware | Bd | Pyxis Anesthesia Station Es | - | All | All | All |
| Operating System | Bd | Pyxis Anesthesia Station Es Firmware | 1.6.1 | All | All | All |
| Operating System | Bd | Pyxis Anesthesia Station Es Firmware | 1.6.1 | All | All | All |
| Hardware | Bd | Pyxis Medstation Es | - | All | All | All |
| Hardware | Bd | Pyxis Medstation Es | - | All | All | All |
| Operating System | Bd | Pyxis Medstation Es Firmware | 1.6.1 | All | All | All |
| Operating System | Bd | Pyxis Medstation Es Firmware | 1.6.1 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| BD Pyxis MedStation and Pyxis Anesthesia (PAS) ES System | CISA | MISC | www.us-cert.gov | Third Party Advisory, US Government Resource |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.