DHS Issues Advisory on Cyber Vulnerabilities in Infusion Pump

The Department of Homeland Security issued an advisory flagging eight vulnerabilities in the Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump. The following versions are affected: 1.1, 1.5 and 1.6.

The DHS said a remote attacker could gain access and impact the intended communications and therapeutic operation of the devices.

Organizations using the pump should evaluate the vulnerabilities based on their operational environment and specific clinical usage.