Number: AV21-659
Date: 23 December 2021
On 21 December 2021 ICS–CERT published an ICS Medical Advisory to highlight vulnerabilities in the following products:
- Agilia Connect WiFi module of pumps – pump versions vD25 and prior
- Agilia Link+ – version v3.0 D15 and prior
- Vigilant Software Suite (Vigilant Centerium, Vigilant MasterMed and Vigilant Insight) – version v1.0
- Agilia Partner maintenance software – version v3.3.0 and prior
Exploitation of these vulnerabilities could allow an actor to gain access to sensitive information, modify settings or parameters, or perform arbitrary actions as an authenticated user.
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.
ICS Medical Advisory (ICSMA–21–355–01)
https://www.cisa.gov/uscert/ics/advisories/icsma-21-355-01