Commercial Infusion Pump Vulnerability Assessment with RCE Exploitation

Conducted security research on a commercially deployed infusion pump system. The research identified multiple vulnerabilities in the device, including a remote code execution (RCE) vulnerability in the pump’s network-facing interface.

Developed a working exploit that achieved arbitrary code execution on the device, demonstrating the severity of the vulnerability in a life-critical medical system.