← Back to home
ICSMA-22-277-01  ·  Published 2022-10-04  ·  View on CISA ICS-CERT ↗

BD Totalys MultiProcessor

CVSS 6.6 MEDIUM

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to access, modify, or delete sensitive information, including electronic protected health information (ePHI), protected health information (PHI), and personally identifiable information (PII).

CVEs (1)

Remediations

  • According to BD, this vulnerability is scheduled to be remediated in the BD Totalys MultiProcessor version 1.71 software release expected in fourth quarter 2022.
  • BD recommends the following compensating controls for users with versions of the BD Totalys MultiProcessor using hard-coded credentials:
  • For additional information, users should see BD 's security bulletin.

Affected Vendors

Becton, Dickinson and Company (BD)

Affected Products (1)

Becton, Dickinson and Company (BD) · BD Totalys MultiProcessor <= 1.70

Affected Sectors

Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more