CVE-2017-12720 : What You Need to Know

A detected problem related to improper access control in the Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump with versions 1.1, 1.5, and 1.6 allows unauthorized access to the FTP server without authentication.

Understanding CVE-2017-12720

What is CVE-2017-12720?

An Improper Access Control vulnerability was found in the Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, versions 1.1, 1.5, and 1.6, enabling unauthorized access to the FTP server without requiring authentication.

The Impact of CVE-2017-12720

This vulnerability could lead to unauthorized access to the pump's FTP server, potentially compromising sensitive data and allowing malicious actors to manipulate the pump's settings.

Technical Details of CVE-2017-12720

Vulnerability Description

The Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, when configured to allow FTP connections, lacks proper access control, allowing unauthorized users to access the FTP server without authentication.

Affected Systems and Versions

Product: Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump
Versions: 1.1, 1.5, 1.6

Exploitation Mechanism

Unauthorized users can exploit this vulnerability by connecting to the FTP server on the affected pump without the need for authentication, potentially gaining unauthorized access.

Mitigation and Prevention

Immediate Steps to Take

Disable FTP access on the affected pump if not essential for operation.
Implement network segmentation to restrict access to the pump.
Monitor network traffic for any suspicious activity.

Long-Term Security Practices

Regularly update the pump's firmware to patch known vulnerabilities.
Conduct security assessments and penetration testing on medical devices to identify and address potential security weaknesses.

Patching and Updates

Ensure that the Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump is running the latest firmware version with security patches applied.