### [CVE-2020-12045](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12045)
![](https://img.shields.io/static/v1?label=Product&message=Baxter%20Sigma%20Spectrum%20Infusion%20Pumps&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=USE%20OF%20HARD%20CODED%20PASSWORD%20CWE-259&color=brighgreen)

### Description

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24) when used in conjunction with a Baxter Spectrum v8.x (model 35700BAX2), operates a Telnet service on Port 1023 with hard-coded credentials.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/rojasjo/TelnetHoneypot.Net