CVE Vulnerabilities

CVE-2024-1275

Use of Default Cryptographic Key

Published: May 31, 2024 | Modified: Jun 05, 2024

CVSS 3.x

N/A

Source:

NVD

CVSS 2.x

RedHat/V2

RedHat/V3

Ubuntu

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-1275
CWE	https://cwe.mitre.org/data/definitions/1394.html

Use of Default Cryptographic Key vulnerability in Baxter Welch Allyn Connex Spot Monitor may allow Configuration/Environment Manipulation.This issue affects Welch Allyn Connex Spot Monitor in all versions prior to 1.52.

Weakness

The product uses a default cryptographic key for potentially critical functionality.

Potential Mitigations

References

https://www.cisa.gov/news-events/ics-medical-advisories/icsma-24-151-02

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.