Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 has a default account with hard-coded credentials used with the FTP protocol. Baxter asserts no files can be transferred to or from the WBM using this account. Baxter has released a new version of the SIGMA Spectrum Infusion System, Version 8, which incorporates hardware and software changes.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5434
Reference (s):
- https://ics-cert.us-cert.gov/advisories/ICSA-15-181-01