ÃÀ¶ØÁ¦Ò½ÁÆ×°±¸¶à¸öÎó²îÇ徲ͨ¸æ

Ðû²¼Ê±¼ä 2019-11-11

Îó²î±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2019-13543 £¬Î£ÏÕ¼¶±ð£ºÖÐΣ £¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º5.8 £¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2019-13539 £¬Î£ÏÕ¼¶±ð£º¸ßΣ £¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º7.0 £¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2019-3464 £¬Î£ÏÕ¼¶±ð£ºÑÏÖØ £¬CVSS·ÖÖµ£º9.8

CVE±àºÅ£ºCVE-2019-3463 £¬Î£ÏÕ¼¶±ð£ºÑÏÖØ £¬CVSS·ÖÖµ£º9.8


Ó°Ïì°æ±¾


Valleylab Exchange Client 3.4¼°¸üµÍ°æ±¾

Valleylab FT10ÄÜԴƽ̨£¨VLFT10GEN£©Èí¼þ°æ±¾4.0.0¼°ÒÔÏÂ

Valleylab FX8ÄÜԴƽ̨£¨VLFX8GEN£©Èí¼þ°æ±¾1.1.0¼°ÒÔÏÂ


Îó²î¸ÅÊö


ÃÀ¹úÃÀ¶ØÁ¦¹«Ë¾£¨Medtronic, Inc.£©½¨ÉèÓÚ1949Äê £¬×ܲ¿Î»ÓÚÃÀ¹úÃ÷ÄáËÕ´ïÖÝÃ÷Äá°¢²¨Àû˹ÊÐ £¬ÊÇÈ«ÇòÁìÏȵÄÒ½ÁƿƼ¼¹«Ë¾¡£ÆäÖÐValleylab²úÆ·±£´æÒÔÏÂÎó²î£º


CVE-2019-13543


ÊÜÓ°ÏìµÄ×°±¸Ê¹Óöà×éÓ²±àÂëµÄƾ֤ £¬ÈôÊÇ̻¶ £¬Ôò¿ÉÄÜÔÊÐí¹¥»÷Õ߶ÁÈ¡Îļþ¡£


CVE-2019-13539


Ò×Êܹ¥»÷µÄ²úƷʹÓÃdescryptËã·¨¾ÙÐÐOSÃÜÂë¹þÏ£´¦Öóͷ£¡£Ö»¹Ü»ùÓÚÍøÂçµÄµÇ¼ÒѽûÓà £¬µ«ÆäËûÎó²îÒ²¿ÉÒÔÓÃÓÚ»ñÈ¡ÍâµØShell»á¼û²¢»ñÈ¡ÕâЩ¹þÏ£¡£


CVE-2019-3464ºÍCVE-2019-3463


ÔÚÕâЩ²úÆ·ÖÐʹÓõÄÒ×Êܹ¥»÷µÄrsshÊÊÓóÌÐò°æ±¾¿ÉÔö½øÎļþÉÏ´« £¬Õâ¿ÉÄÜ»áʹ¹¥»÷Õß»ñµÃ¶ÔÎļþµÄ¹ÜÆÊÎö¼ûȨÏÞ»òÖ´ÐÐí§Òâ´úÂë¡£


Îó²îÑéÖ¤


ÔÝÎÞPOC/EXP¡£


ÐÞ¸´½¨Òé


ÃÀ¶ØÁ¦¹«Ë¾Ðû²¼µÄÇå¾²²¹¶¡ÏÖÒÑ¿ÉÓÃÓÚFT10ƽ̨ £¬Ô¤¼Æ½«ÔÚ2020ÄêÍ·Õë¶ÔFX8ƽ̨Ðû²¼£ºhttps://www.medtronic.com/covidien/en-us/support/software.html¡£


²Î¿¼Á´½Ó


https://www.us-cert.gov/ics/advisories/icsma-19-311-02