Stryker Medical Beds Vulnerabilities

Stryker have released a security update to address vulnerabilities in their wireless enabled medical bed products. These relate to a vulnerability in WPA2 (Wireless Protected Access 2) known as KRACK (Keyless Re-installation Attack).

Threat ID:: CC-2911
Category:
Threat Severity:: Low
Threat Vector:
Published:: 30 January 2019 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

Threat details

To exploit these vulnerabilities, an attacker needs to be within wireless range of the target device. Successful exploitation of these vulnerabilities could allow data traffic manipulation, resulting in partial disclosure of encrypted communications or injection of data.

For further information:

Remediation steps

Type	Step
	Stryker has released software updates for affected products to mitigate the vulnerabilities. Users and administrators are recommended to contact their suppliers or Stryker directly to acquire these updates. Further remediation guidance can be found on the Information Sharing Portal article, KRACK Key Re-installation Attack - WPA2 Attack CC-1703.

Type

Step

Stryker has released software updates for affected products to mitigate the vulnerabilities. Users and administrators are recommended to contact their suppliers or Stryker directly to acquire these updates.

Further remediation guidance can be found on the Information Sharing Portal article, KRACK Key Re-installation Attack - WPA2 Attack CC-1703.

Last edited: 14 February 2020 2:43 pm