CISA warns of severe flaws in nuclear med tracking software
U.S. federal authorities are warning that several high-severity vulnerabilities discovered in Mirion Medical Co. inventory tracking software used by nuclear medicine and radiology departments could allow attackers to modify program executables, remotely execute code and gain access to sensitive information – if exploited.
The Cybersecurity Infrastructure and Security Agency in an advisory Tuesday said the vulnerabilities, reported to the agency by an independent researcher, affect BioDose/NMIS software versions prior to 23.0, a product of EC2 Software, a company acquired in 2023 by Atlanta-based Mirion Medical.
Mirion Medical, a radiation safety technology company, in a statement to Information Security Media Group, said it has addressed the issues cited in the CISA alert.
Read more at Healthcare Info Security