cvedb.io
CVE-2015-3459
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2015-04-29T23:59:00.057 · Last modified 2026-06-17T00:25:57.987

Summary

The communication module on the Hospira LifeCare PCA Infusion System before 7.0 does not require authentication for root TELNET sessions, which allows remote attackers to modify the pump configuration via unspecified commands.

Affected products

hospira — lifecare_pcainfusion_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when hospira ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.