← Back to home
ICSMA-22-062-01  ·  Published 2022-03-03  ·  View on CISA ICS-CERT ↗

BD Pyxis

CVSS 7.0 HIGH

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to gain access to electronic protected health information (ePHI) or other sensitive information.

CVEs (1)

Remediations

  • BD is in the process of strengthening credential management capabilities in BD Pyxis devices.
  • Additionally, BD recommends the following compensating controls for users of BD Pyxis products that utilize the hard-coded credentials:
  • For more information on this issue, please see the associated BD product security bulletin on the BD website.
  • For product or site-specific concerns, contact your BD service representative.

Affected Vendors

Becton, Dickinson and Company (BD)

Affected Products (24)

Becton, Dickinson and Company (BD) · BD Pyxis Anesthesia Station ES vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis Med Link Family vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis MedBank vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis MedStation 4000 vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis MedStation ES vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis MedStation ES Server vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis ParAssist vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis PharmoPack vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis ProcedureStation (including EC) vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis Rapid Rx vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis StockStation vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis Anesthesia Station 4000 vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis SupplyCenter vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis SupplyRoller vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis SupplyStation (including RF, EC, CP) vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis Track and Deliver vers:all/*
Becton, Dickinson and Company (BD) · BD Rowa Pouch Packaging Systems vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis CATO vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis CIISafe vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis Inventory Connect vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis IV Prep vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis JITrBUD vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis KanBan RF vers:all/*
Becton, Dickinson and Company (BD) · BD Pyxis Logistics vers:all/*

Affected Sectors

Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more