Vulnerability allowed hackers to tamper medication in infusion pump