CVE-2021-31562

The SSL/TLS configuration of Fresenius Kabi Agilia Link + version 3.0 has serious deficiencies that may allow an attacker to compromise SSL/TLS sessions in different ways. An attacker may be able to eavesdrop on transferred data, manipulate data allegedly secured by SSL/TLS, and impersonate an entity to gain access to sensitive information.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsma-21-355-01 Third Party Advisory US Government Resource
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:fresenius-kabi:agilia_connect_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:fresenius-kabi:agilia_connect:-:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:fresenius-kabi:agilia_partner_maintenance_software:*:*:*:*:*:*:*:*
cpe:2.3:a:fresenius-kabi:vigilant_centerium:1.0:*:*:*:*:*:*:*
cpe:2.3:a:fresenius-kabi:vigilant_insight:1.0:*:*:*:*:*:*:*
cpe:2.3:a:fresenius-kabi:vigilant_mastermed:1.0:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
OR cpe:2.3:o:fresenius-kabi:agilia_link\+_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:fresenius-kabi:agilia_link\+_firmware:3.0:-:*:*:*:*:*:*
cpe:2.3:o:fresenius-kabi:agilia_link\+_firmware:3.0:d15:*:*:*:*:*:*
cpe:2.3:h:fresenius-kabi:agilia_link\+:-:*:*:*:*:*:*:*

Information

Published : 2022-01-21 11:15

Updated : 2022-01-28 07:55


NVD link : CVE-2021-31562

Mitre link : CVE-2021-31562


JSON object : View

CWE
CWE-327

Use of a Broken or Risky Cryptographic Algorithm

Advertisement

dedicated server usa

Products Affected

fresenius-kabi

  • agilia_link\+_firmware
  • agilia_connect
  • agilia_link\+
  • vigilant_mastermed
  • vigilant_centerium
  • vigilant_insight
  • agilia_partner_maintenance_software
  • agilia_connect_firmware