CVE-2025-20060

🗓️ 28 Feb 2025 16:51:20Reported by icscertType

Attacker may expose personal identifiable information and personal health information in Dario Health application.

Reporter	Title	Published	Views	Family All 7
Circl	CVE-2025-20060	28 Feb 202518:30	–	circl
CNNVD	Dario Health 安全漏洞	28 Feb 202500:00	–	cnnvd
Cvelist	CVE-2025-20060 Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application Exposure of Private Personal Information to an Unauthorized Actor	28 Feb 202516:51	–	cvelist
EUVD	EUVD-2025-5947	3 Oct 202520:07	–	euvd
NVD	CVE-2025-20060	28 Feb 202517:15	–	nvd
RedhatCVE	CVE-2025-20060	2 Mar 202517:18	–	redhatcve
Vulnrichment	CVE-2025-20060 Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application Exposure of Private Personal Information to an Unauthorized Actor	28 Feb 202516:51	–	vulnrichment

Vulners

Node

dario_health usb-c_blood_glucose_monitoring_system_starter_kit_android_applicationsRange<5.8.7.0.36

dario_health dario_application_database_and_internet-based_server_infrastructure

[
  {
    "defaultStatus": "unaffected",
    "product": "USB-C Blood Glucose Monitoring System Starter Kit Android Applications",
    "vendor": "Dario Health",
    "versions": [
      {
        "lessThan": "5.8.7.0.36",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Dario Application Database and Internet-based Server Infrastructure",
    "vendor": "Dario Health",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ]
  }
]

Source	Link
dariohealth	www.dariohealth.com/contact/
cisa	www.cisa.gov/news-events/ics-medical-advisories/icsma-25-058-01

15 Apr 2026 00:35Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.17.5

CVSS 48.7

EPSS0.00171

SSVC

CWE-359