Summary: CISA and FDA have issued alerts regarding serious vulnerabilities found in Contec CMS8000 and Epsimed MN-120 patient monitors, allowing unauthorized remote access and potential patient data exposure. The vulnerabilities, tracked as CVE-2025-0626, CVE-2024-12248, and CVE-2025-0683, pose significant risks, prompting a recommendation for organizations to disconnect these devices from their networks. Both agencies highlight the urgent need for awareness as there have been no reported incidents or injuries related to these vulnerabilities at this time.
Affected: Contec Medical Systems (CMS8000 Patient Monitor), Epsimed MN-120 Patient Monitor
Keypoints :
- CVEs identified: CVE-2025-0626 (CVSS 7.7), CVE-2024-12248 (CVSS 9.3), CVE-2025-0683 (CVSS 8.2).
- The devices send remote access requests to a hard-coded IP address, creating a potential backdoor for unauthorized access.
- Entities are advised to unplug these devices and monitor for unusual functioning until vulnerabilities are patched.
Source: https://thehackernews.com/2025/01/cisa-and-fda-warn-of-critical-backdoor.html