Security experts from ISC-CERT warned of a number of dangerous vulnerabilities in Smiths Medical Medfusion 4000 wireless infusion pumps, allowing hackers to gain remote access to the device and manage its operation. Smiths Medical equipment is used in medical institutions around the world for the supply of small doses of drugs in neonatal intensive care, pediatrics and during operations.

Some of the vulnerabilities discovered by the researcher Scott Gayou (Scott Gayou) have a high degree of danger. A remote intruder can easily gain unauthorized access to the device and affect the operation of the pump. Despite the segmented design, the attacker can compromise the communication and therapeutic modules of the device.

The most dangerous vulnerability (CVE-2017-12725) is associated with the use of embedded credentials for automatic wireless connection. In addition to the above problem, a number of other dangerous vulnerabilities were discovered, in particular the buffer overflow vulnerability (CVE-2017-12718), which allows remote execution of code on the target device under certain conditions. Also, the researchers identified the lack of an authentication mechanism (CVE-2017-12720), the presence of unchanged credentials (CVE-2017-12724) for the FTP server of the device and the lack of proper certificate checking (CVE-2017-12721), which allows for an attack "a man in the middle ".

These vulnerabilities affect the Medfusion 4000 Wireless Syringe Infusion Pump v. eleven. 5 and 1. Smiths Medical will release a revised firmware version 1. 1 in January 2018.

Vulnerabilities in medical equipment are a serious cause for concern. In August 2017, the US Food and Drug Administration (FDA) withdrew 465,000. vulnerable pacemakers produced by Abbot (formerly known as St. Jude Medical).