Vulnerability Details : CVE-2021-43935
The impacted products, when configured to use SSO, are affected by an improper authentication vulnerability. This vulnerability allows the application to accept manual entry of any active directory (AD) account provisioned in the application without supplying a password, resulting in access to the application as the supplied AD account, with all associated privileges.
Vulnerability category: BypassGain privilege
Products affected by CVE-2021-43935
- Baxter » Welch Allyn Hscribe Holter Analysis System FirmwareVersions from including (>=) 5.01 and up to, including, (<=) 6.4.0cpe:2.3:o:baxter:welch_allyn_hscribe_holter_analysis_system_firmware:*:*:*:*:*:*:*:*
- Baxter » Welch Allyn Q-stress Cardiac Stress Testing System FirmwareVersions from including (>=) 6.0.0 and up to, including, (<=) 6.3.1cpe:2.3:o:baxter:welch_allyn_q-stress_cardiac_stress_testing_system_firmware:*:*:*:*:*:*:*:*
- Baxter » Welch Allyn Xscribe Cardiac Stress Testing System FirmwareVersions from including (>=) 5.01 and up to, including, (<=) 6.3.1cpe:2.3:o:baxter:welch_allyn_xscribe_cardiac_stress_testing_system_firmware:*:*:*:*:*:*:*:*
- Baxter » Welch Allyn Connex CardioVersions from including (>=) 1.0.0 and up to, including, (<=) 1.1.1cpe:2.3:a:baxter:welch_allyn_connex_cardio:*:*:*:*:*:*:*:*
- cpe:2.3:a:baxter:welch_allyn_diagnostic_cardiology_suite:2.1.0:*:*:*:*:*:*:*
- Baxter » Welch Allyn Rscribe Resting Ecg SystemVersions from including (>=) 5.01 and up to, including, (<=) 7.0.0cpe:2.3:a:baxter:welch_allyn_rscribe_resting_ecg_system:*:*:*:*:*:*:*:*
- Baxter » Welch Allyn Vision Express Holter Analysis SystemVersions from including (>=) 6.1.0 and up to, including, (<=) 6.4.0cpe:2.3:a:baxter:welch_allyn_vision_express_holter_analysis_system:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-43935
0.21%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 59 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-43935
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST | |
8.1
|
HIGH | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
2.2
|
5.9
|
ICS-CERT | |
9.8
|
CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2021-43935
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
-
A product requires authentication, but the product has an alternate path or channel that does not require authentication.Assigned by: ics-cert@hq.dhs.gov (Secondary)
References for CVE-2021-43935
-
https://www.cisa.gov/uscert/ics/advisories/icsma-21-343-01
Hillrom Welch Allyn Cardio Products | CISAMitigation;Third Party Advisory;US Government Resource
Jump to