An issue was discovered on Nescomed Multipara Monitor M1000 devices. The device enables an unencrypted TELNET service by default, with a blank password for the admin account. This allows an attacker to gain root access to the device over the local network.
https://www.niscomed.com/multipara-monitor.html
https://payatu.com/advisory/unauthenticated-telnet-service-in-niscomed-patient-monitor