CVE-2021-38398

The affected device uses off-the-shelf software components that contain unpatched vulnerabilities. A malicious attacker with physical access to the affected device could exploit these vulnerabilities.
References
Link Resource
https://us-cert.cisa.gov/ics/advisories/icsma-21-273-01 Third Party Advisory US Government Resource
https://us-cert.cisa.gov/ics/advisories/icsma-21-273-01 Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:bostonscientific:zoom_latitude_programming_system_model_3120_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:bostonscientific:zoom_latitude_programming_system_model_3120:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:bostonscientific:zoom_latitude_pogrammer\/recorder\/monitor_3120_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:bostonscientific:zoom_latitude_pogrammer\/recorder\/monitor_3120:-:*:*:*:*:*:*:*

History

21 Nov 2024, 06:16

Type Values Removed Values Added
CVSS v2 : 4.6
v3 : 6.8
v2 : 4.6
v3 : 6.5
References () https://us-cert.cisa.gov/ics/advisories/icsma-21-273-01 - Third Party Advisory, US Government Resource () https://us-cert.cisa.gov/ics/advisories/icsma-21-273-01 - Third Party Advisory, US Government Resource

Information

Published : 2021-10-04 18:15

Updated : 2024-11-21 06:16


NVD link : CVE-2021-38398

Mitre link : CVE-2021-38398

CVE.ORG link : CVE-2021-38398


JSON object : View

Products Affected

bostonscientific

  • zoom_latitude_pogrammer\/recorder\/monitor_3120_firmware
  • zoom_latitude_programming_system_model_3120
  • zoom_latitude_programming_system_model_3120_firmware
  • zoom_latitude_pogrammer\/recorder\/monitor_3120
CWE
CWE-1329

Reliance on Component That is Not Updateable

NVD-CWE-Other