ÃÀ¶ØÁ¦Ò½ÁÆÉ豸¶à¸ö·ì϶°²È«¹«¸æ

°ä²¼¹¦·ò 2019-11-11

·ì϶±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2019-13543£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º5.8£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2019-13539£¬Î£ÏÕ¼¶±ð£º¸ßΣ£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º7.0£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2019-3464£¬Î£ÏÕ¼¶±ð£ºÑϳÁ£¬CVSS·ÖÖµ£º9.8

CVE±àºÅ£ºCVE-2019-3463£¬Î£ÏÕ¼¶±ð£ºÑϳÁ£¬CVSS·ÖÖµ£º9.8


Ó°Ïì°æ±¾


Valleylab Exchange Client 3.4¼°¸üµÍ°æ±¾

Valleylab FT10ÄÜԴƽ̨£¨VLFT10GEN£©Èí¼þ°æ±¾4.0.0¼°ÒÔÏÂ

Valleylab FX8ÄÜԴƽ̨£¨VLFX8GEN£©Èí¼þ°æ±¾1.1.0¼°ÒÔÏÂ


·ì϶¸ÅÊö


ÃÀ¹úÃÀ¶ØÁ¦¹«Ë¾£¨Medtronic, Inc.£©³ÉÁ¢ÓÚ1949Ä꣬×ܲ¿Î»ÓÚÃÀ¹úÃ÷ÄáËÕ´ïÖÝÃ÷Äá°¢²¨Àû˹ÊУ¬ÊÇÈ«Çòµ±ÏȵÄÒ½ÁƿƼ¼¹«Ë¾ ¡£ÆäÖÐValleylab²úÆ·´æÔÚÒÔÏ·ì϶£º


CVE-2019-13543


ÊÜÓ°ÏìµÄÉ豸ʹÓöà×éÓ²±àÂëµÄÍ´´¦£¬ÈôÊǶ³ö£¬Ôò¿ÉÄÜÔÊÐí¹¥»÷Õ߶ÁÈ¡Îļþ ¡£


CVE-2019-13539


Ò×Êܹ¥»÷µÄ²úƷʹÓÃdescryptËã·¨½øÐÐOSÃÜÂë¹þÏ£´¦Öà ¡£Ö»¹Ü»ùÓÚÍøÂçµÄµÇ¼ÒѽûÓ㬵«ÆäËû·ì϶ҲÄܹ»ÓÃÓÚ»ñÈ¡±¾µØShell½Ó¼û²¢»ñÈ¡ÕâЩ¹þÏ£ ¡£


CVE-2019-3464ºÍCVE-2019-3463


ÔÚÕâЩ²úÆ·ÖÐʹÓõÄÒ×Êܹ¥»÷µÄrsshʵÓ÷¨Ê½°æ±¾¿ÉÍƽøÎļþÉÏ´«£¬Õâ¿ÉÄÜ»áʹ¹¥»÷Õß»ñµÃ¶ÔÎļþµÄÖÎÀí½Ó¼ûȨÏÞ»òÖ´ÐÐËÁÒâ´úÂë ¡£


·ì϶ÑéÖ¤


ÔÝÎÞPOC/EXP ¡£


½¨¸´½¨Òé


ÃÀ¶ØÁ¦¹«Ë¾°ä²¼µÄ°²È«²¹¶¡ÏÖÒÑ¿ÉÓÃÓÚFT10ƽ̨£¬Ô¤¼Æ½«ÔÚ2020ËêÊ×Õë¶ÔFX8ƽ̨°ä²¼£ºhttps://www.medtronic.com/covidien/en-us/support/software.html ¡£


²Î¿¼Á´½Ó


https://www.us-cert.gov/ics/advisories/icsma-19-311-02