H-ISAC TLP WHITE: HC3 Sector Alert: Baxter Welch Allyn Vulnerabilities

On June 4, 2024, the Health Sector Cybersecurity Coordination Center (HC3) released a sector alert: Baxter Welch Allyn Vulnerabilities.

The alert draws attention to two vulnerabilities affecting Baxter products. CVE-2024-5176 which can be found in Baxter Welch Allyn Configuration Tool and CVE-2024-1275 affecting Baxter Welch Allyn Connex Spot Monitor (CSM). Both vulnerabilities received a CVSS v4 score of 9 or higher (CRITICAL) and are exploitable remotely.

Successful exploitation of one of these vulnerabilities could result in an impact and/or delay to patient care. While a patch is currently available for one of these vulnerabilities, a software update will not be made available for the other until Q3 2024. Mitigations and workarounds from the vendor and CISA are outlined in this Sector Alert.

Health-ISAC is distributing this report to increase your situational awareness, and encourages members to take appropriate steps to mitigate risk of these vulnerabilities being exploited by ether applying available patches and/or workarounds, and continuously monitoring their networks for suspicious activity.

For additional details, please see the attached report.