CVE-2023-31222

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jun 29, 2023

Updated: Jul 7, 2023

CWE ID 502

Summary

CVE-2023-31222 is a deserialization vulnerability affecting Microsoft Messaging Queuing Service in Medtronic's Paceart Optima versions 1.11 and earlier, running on Windows. An unauthorized user can exploit this issue by deserializing untrusted data, leading to potential data loss, theft, or modification in the healthcare delivery organization's Paceart Optima system. Furthermore, successful exploitation could provide an attacker with access to further network penetration.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Paceart Optima

Affected Vendors

Medtronic

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r0cTVO
https://www.cve.org/CVERecord?id=CVE-2023-31222
https://nvd.nist.gov/vuln/detail/CVE-2023-31222

Back to Vulnerability Database