CVE-2021-4479

Published: Giu 02, 2026 Last Modified: Giu 02, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 6,3

Source: [email protected]

Attack Vector: network

Attack Complexity: high

Privileges Required: none

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

MEDIUM 4,0

Source: [email protected]

Attack Vector: network

Attack Complexity: high

Privileges Required: none

User Interaction: none

Scope: changed

Confidentiality: none

Integrity: none

Availability: low

Description

AI Translation Available

Dräger Atlan A350 software versions 1.00 through 1.01 contains an improper input handling vulnerability that allows attackers to cause a denial of service by sending specifically crafted non-Medibus-compliant data through the Medibus interface. Attackers can transmit malformed data to overload the internal processor, gradually disrupting device operation over several hours and causing loss of data transmission, delayed display of real-time curves, and deviation between displayed airway pressure values and screen curves.

1286

Improper Validation of Syntactic Correctness of Input

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Other

Potential Impacts:

Varies By Context

Applicable Platforms

All platforms may be affected

View CWE Details

https://static.draeger.com/security

https://www.vulncheck.com/advisories/dr-ger-atlan-a350-dos-…

https://www.vulncheck.com/advisories/dr-ger-atlan-a350-dos-via-medibus-interface

CVE-2021-4479

Description

Improper Validation of Syntactic Correctness of Input

Common Consequences

Applicable Platforms

Iscriviti alla newsletter