Lucene search
K

12 matches found

EUVD
EUVD
added 2026/05/07 6:30 p.m.10 views

EUVD-2025-209728

Medtronic MyCareLink Patient Monitor uses per-product credentials that are stored in a recoverable format. An attacker can use these credentials to modify encrypted drive data...

6.8CVSS5.8AI score0.00131EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-22528

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00165EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/26 3:33 a.m.8 views

CVE-2025-4394

Medtronic MyCareLink Patient Monitor uses an unencrypted filesystem on internal storage, which allows an attacker with physical access to read and modify files. This issue affects MyCareLink Patient Monitor models 24950 and 24952: before June 25, 2025...

6.8CVSS6.8AI score0.00188EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/26 3:33 a.m.8 views

CVE-2025-4395

Medtronic MyCareLink Patient Monitor has a built-in user account with an empty password, which allows an attacker with physical access to log in with no password and access modify system functionality. This issue affects MyCareLink Patient Monitor models 24950 and 24952: before June 25, 2025...

6.8CVSS7AI score0.0027EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/26 3:33 a.m.7 views

CVE-2025-4393

Medtronic MyCareLink Patient Monitor has an internal service that deserializes data, which allows a local attacker to interact with the service by crafting a binary payload to crash the service or elevate privileges. This issue affects MyCareLink Patient Monitor models 24950 and 24952: before Jun...

6.5CVSS7.1AI score0.00165EPSS
Exploits0References1
NVD
NVD
added 2025/07/24 7:15 a.m.7 views

CVE-2025-4395

Medtronic MyCareLink Patient Monitor has a built-in user account with an empty password, which allows an attacker with physical access to log in with no password and access modify system functionality. This issue affects MyCareLink Patient Monitor models 24950 and 24952: before June 25, 2025...

6.8CVSS0.0027EPSS
Exploits0References2
NVD
NVD
added 2025/07/24 7:15 a.m.6 views

CVE-2025-4393

Medtronic MyCareLink Patient Monitor has an internal service that deserializes data, which allows a local attacker to interact with the service by crafting a binary payload to crash the service or elevate privileges. This issue affects MyCareLink Patient Monitor models 24950 and 24952: before Jun...

6.5CVSS0.00165EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/24 3:30 a.m.11 views

CVE-2025-4395 Medtronic MyCareLink Patient Monitor Empty Password Vulnerability

Medtronic MyCareLink Patient Monitor has a built-in user account with an empty password, which allows an attacker with physical access to log in with no password and access modify system functionality. This issue affects MyCareLink Patient Monitor models 24950 and 24952: before June 25, 2025...

6.8CVSS0.0027EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/07/24 12:0 a.m.5 views

PT-2025-30630 · Medtronic · Mycarelink Patient Monitor

Name of the Vulnerable Software and Affected Versions: Medtronic MyCareLink Patient Monitor models 24950 and 24952 before June 25, 2025 Description: The Medtronic MyCareLink Patient Monitor contains a built-in user account with no password. This allows an attacker with physical access to log in...

6.8CVSS6.5AI score0.0027EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/07/24 12:0 a.m.5 views

PT-2025-30628 · Medtronic · Mycarelink Patient Monitor 24952 +1

Name of the Vulnerable Software and Affected Versions: Medtronic MyCareLink Patient Monitor models 24950 and 24952 before June 25, 2025 Description: The Medtronic MyCareLink Patient Monitor contains an internal service that deserializes data. A local attacker can interact with this service by...

6.5CVSS6.3AI score0.00165EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/07/24 12:0 a.m.8 views

PT-2025-30629 · Medtronic · Mycarelink Patient Monitor

Name of the Vulnerable Software and Affected Versions: Medtronic MyCareLink Patient Monitor versions 24950 and 24952 before June 25, 2025 Description: The Medtronic MyCareLink Patient Monitor utilizes an unencrypted filesystem on its internal storage. This allows an attacker with physical access ...

6.8CVSS5.8AI score0.00188EPSS
Exploits0References6
ICS
ICS
added 2018/08/07 6:0 a.m.60 views

Medtronic MyCareLink 24950 Patient Monitor (Update A)

1. EXECUTIVE SUMMARY CVSS v3 4.9 Vendor: Medtronic Equipment: MyCareLink Patient Monitor Vulnerabilities: Insufficient Verification of Data Authenticity, Storing Passwords in a Recoverable Format 2. RISK EVALUATION Successful exploitation of these vulnerabilities may allow an attacker with...

7.1CVSS6.6AI score0.00361EPSS
Exploits0References10
Rows per page
Query Builder