This page aggregates publicly disclosed CVE and security risk information related to niscomed, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-15485 | An issue was discovered on Nescomed Multipara Monitor M1000 devices. The onboard Flash memory stores data in cleartext, without integrity protection against tampering. | [email protected] | 5.5 | 0.04% | 2020-08-26 | 2024-11-21 |
| CVE-2020-15483 | An issue was discovered on Nescomed Multipara Monitor M1000 devices. The physical UART debug port provides a shell, without requiring a password, with complete access. | [email protected] | 6.8 | 0.04% | 2020-08-26 | 2024-11-21 |
| CVE-2020-15482 | An issue was discovered on Nescomed Multipara Monitor M1000 devices. The device enables an unencrypted TELNET service by default, with a blank password for the admin account. This allows an attacker to gain root access to the device over the local network. | [email protected] | 7.8 | 0.04% | 2020-08-26 | 2024-11-21 |
| CVE-2020-15484 | An issue was discovered on Nescomed Multipara Monitor M1000 devices. The internal storage of the underlying Linux system stores data in cleartext, without integrity protection against tampering. | [email protected] | 7.5 | 0.15% | 2020-08-26 | 2024-11-21 |