← Back to home
ICSMA-19-029-02  ·  Published 2019-02-05  ·  View on CISA ICS-CERT ↗

BD FACSLyric (Update A)

CVSS 6.8 MEDIUM

Risk Summary

Successful exploitation of this vulnerability may allow an attacker to gain unauthorized access to administrative level privileges on a workstation, which could allow arbitrary execution of commands. This vulnerability does not impact BD FACSLyric flow cytometry systems using the Windows 7 Operating System.

CVEs (1)

Remediations

  • BD will follow-up directly with all affected users to perform remediation activities. BD will disable the administrative account for users with BD FACSLyric RUO Cell Analyzer units having the Windows 10 Pro Operating System. BD has contacted and will replace the computer workstations for affected users with the BD FACSLyric IVD Cell Analyzer units with the Windows 10 Pro Operating System.
  • For additional information regarding the reported vulnerability please contact BD for the following support:
  • For technical support, please contact the BD Biosciences General Tech Support - Flow Cytometry via email [email protected] or phone 877-232-8995 Option 2 and then Option 2 again.
  • For more information on BD 's product security and vulnerability management, contact BD 's Product Security Office:
  • https://www.bd.com/productsecurity

Affected Vendors

Becton, Dickinson and Company (BD)

Affected Products (2)

Becton, Dickinson and Company (BD) · FACSLyric IVD Windows 10 Professional Operating System U.S. release
Becton, Dickinson and Company (BD) · FACSLyric Research Use Only Windows 10 Professional Operating System, U.S. and Malaysian Releases, between November 2017 and November 2018

Affected Sectors

Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more