CVE-2018-10626

🗓️ 10 Aug 2018 18:00:00Reported by icscertType

A vulnerability in Medtronic MyCareLink 24950 and 24952 Patient Monitor allows unauthorized data upload

Reporter	Title	Published	Views	Family All 7
ATTACKERKB	CVE-2018-10626	10 Aug 201818:29	–	attackerkb
Circl	CVE-2018-10626	22 May 202516:43	–	circl
Cvelist	CVE-2018-10626 Medtronic MyCareLink 24950 Patient Monitor Insufficient Verification of Data Authenticity	10 Aug 201818:00	–	cvelist
EUVD	EUVD-2018-2698	7 Oct 202500:30	–	euvd
ICS	Medtronic MyCareLink 24950 Patient Monitor (Update A)	7 Aug 201806:00	–	ics
NVD	CVE-2018-10626	10 Aug 201818:29	–	nvd
Prion	Design/Logic Flaw	10 Aug 201818:29	–	prion

NVD

Vulners

Node

medtronic mycarelink_24952_patient_monitor_firmwareMatch-

AND

medtronic mycarelink_24952_patient_monitorMatch-

Node

medtronic mycarelink_24950_patient_monitor_firmwareMatch-

AND

medtronic mycarelink_24950_patient_monitorMatch-

[
  {
    "vendor": "Medtronic",
    "product": "24950 MyCareLink Monitor",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Medtronic",
    "product": "24952 MyCareLink Monitor",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
global	www.global.medtronic.com/xg-en/product-security/security-bulletins/mycarelink-8-7-18.html
cisa	www.cisa.gov/news-events/ics-medical-advisories/icsma-18-219-01
securityfocus	www.securityfocus.com/bid/105042
github	www.github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2018/icsma-18-219-01.json
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSMA-18-219-01

19 May 2026 16:16Current

6.1Medium risk

Vulners AI Score6.1

CVSS 23.8

CVSS 34.4

CVSS 3.14.4

EPSS0.00054

CWE-345