3 matches found
CVE-2019-6538
CVE-2019-6538 concerns Medtronic Conexus radio telemetry protocol lacking authentication/authorization. Connected sources (ICS advisory and coverage) specify the affected devices include MyCareLink Monitor (versions 24950/24952), CareLink Monitor (2490C), CareLink 2090 Programmer, and multiple Me...
Medtronic Defibrillators Have Critical Flaws, Warns DHS
The Department of Homeland Security has issued an emergency alert warning of critical flaws allowing attackers to tamper with several Medtronic medical devices, including defibrillators. The two vulnerabilities – comprised of a medium and critical-severity flaw – exist in 20 products made by the...
Medtronic Conexus Radio Frequency Telemetry Protocol (Update C)
1. EXECUTIVE SUMMARY CVSS v3 9.3 ATTENTION: Exploitable with adjacent access/low attack complexity Vendor: Medtronic Equipment: MyCareLink Monitor, CareLink Monitor, CareLink 2090 Programmer, specific Medtronic implanted cardiac devices listed below Vulnerabilities: Improper Access Control,...