Vulnerability Description
BMC Medical Luna CPAP Machines released prior to July 1, 2017, contain an improper input validation vulnerability which may allow an authenticated attacker to crash the CPAP's Wi-Fi module resulting in a denial-of-service condition.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cpap | Luna Cpap Machine Firmware | < 20170701 |
| Cpap | Luna Cpap Machine | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/100354Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSMA-17-227-01Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/100354Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSMA-17-227-01Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2017-12701?
CVE-2017-12701 is a vulnerability with a CVSS score of 6.5 (MEDIUM). BMC Medical Luna CPAP Machines released prior to July 1, 2017, contain an improper input validation vulnerability which may allow an authenticated attacker to crash the CPAP's Wi-Fi module resulting i...
How severe is CVE-2017-12701?
CVE-2017-12701 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-12701?
Check the references section above for vendor advisories and patch information. Affected products include: Cpap Luna Cpap Machine Firmware, Cpap Luna Cpap Machine.