1. Home
  2. Mapping Frameworks
  3. CVE Home
  4. Baxter ExactaMix EM 2400 & EM 1200

CVE CVE-2020-12008 Mappings

Baxter ExactaMix EM 2400 Versions 1.10, 1.11 and ExactaMix EM1200 Versions 1.1, 1.2 systems use cleartext messages to communicate order information with an order entry system. This could allow an attacker with network access to view sensitive data including PHI.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2020-12008 Baxter ExactaMix EM 2400 & EM 1200 primary_impact T1552 Unsecured Credentials
CVE-2020-12008 Baxter ExactaMix EM 2400 & EM 1200 secondary_impact T0859 Valid Accounts
CVE-2020-12008 Baxter ExactaMix EM 2400 & EM 1200 exploitation_technique T0842 Network Sniffing