Threat and Vulnerability Intelligence Database

CVE-2023-31222	Medtronic Paceart MSMQ Deserialization of Untrusted Data Description: Deserialization of untrusted data in Microsoft Messaging Queuing Service in Medtronic's Paceart Optima versions 1.11 and earlier on Windows allows an unauthorized user to impact a healthcare delivery organization’s Paceart Optima system cardiac device causing data to be deleted, stolen, or modified, or the Paceart Optima system being used for further network penetration via network connectivity. CVSS: CRITICAL (9.8) EPSS Score: 0.11% Source: CVE November 27th, 2024 (5 months ago)
CVE-2023-23325	Description: Zumtobel Netlink CCD Onboard 3.74 - Firmware 3.80 was discovered to contain a command injection vulnerability via the NetHostname parameter. CVSS: CRITICAL (9.8) EPSS Score: 0.13% Source: CVE November 27th, 2024 (5 months ago)
CVE-2023-22814	Authentication Bypass issue in My Cloud OS 5 devices Description: An authentication bypass issue via spoofing was discovered in the token-based authentication mechanism that could allow an attacker to carry out an impersonation attack. This issue affects My Cloud OS 5 devices: before 5.26.202. CVSS: CRITICAL (10.0) EPSS Score: 0.28% Source: CVE November 27th, 2024 (5 months ago)