Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-2678

Malware in sbrugna...

8.8CVSS8.8AI score0.01234EPSS
Exploits0References3
ICS
ICS
added 2022/09/20 12:0 a.m.55 views

Medtronic NGP 600 Series Insulin Pumps

1. EXECUTIVE SUMMARY CVSS v3 4.8 ATTENTION: Exploitable from an adjacent network Vendor: Medtronic Equipment: MiniMed 600 Series Insulin Pumps Vulnerability: Protection Mechanism Failure 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthorized user to deliver...

4.8CVSS5AI score0.00319EPSS
Exploits0References4
HackRead
HackRead
added 2021/10/07 2:54 p.m.23 views

Medtronic recalls insulin pump controllers over life-threatening flaws

By Deeba Ahmed Medtronic has recalled the remote controllers used with some of the company’s insulin pumps because of inherent vulnerabilities that could lead to injury or death. This is a post from HackRead.com Read the original post: Medtronic recalls insulin pump controllers over...

3.6AI score
Exploits0
OSV
OSV
added 2021/01/19 9:15 p.m.4 views

CVE-2020-27256

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, a hard-coded physician PIN in the physician menu of the insulin pump allows attackers with physical access to change insulin therapy settings...

6.8CVSS6.7AI score0.00311EPSS
Exploits0References1
ICS
ICS
added 2021/01/12 12:0 a.m.78 views

SOOIL Dana Diabecare RS Products

1. EXECUTIVE SUMMARY CVSS v3 7.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: SOOIL Developments Co., Ltd. Equipment: Diabecare RS, AnyDana-i and AnyDana-A Vulnerabilities: Use of Hard Coded Credentials, Insufficiently Protected Credentials, Use of Insufficiently Random...

8.8CVSS7.3AI score0.00581EPSS
Exploits0References5
NVD
NVD
added 2019/06/28 9:15 p.m.25 views

CVE-2019-10964

Medtronic MiniMed Insulin Pumps are designed to communicate using a wireless RF with other devices, such as blood glucose meters, glucose sensor transmitters, and CareLink USB devices. This wireless RF communication protocol does not properly implement authentication or authorization. An attacker...

8.8CVSS8.8AI score0.01234EPSS
Exploits0References4
Prion
Prion
added 2019/06/28 9:15 p.m.23 views

Authentication flaw

In Medtronic MinMed 508 and Medtronic Minimed Paradigm Insulin Pumps, Versions, MiniMed 508 pump – All versions, MiniMed Paradigm 511 pump – All versions, MiniMed Paradigm 512/712 pumps – All versions, MiniMed Paradigm 712E pump–All versions, MiniMed Paradigm 515/715 pumps–All versions, MiniMed...

5.8CVSS8.7AI score0.01234EPSS
Exploits0References2Affected Software7
CVE
CVE
added 2019/06/28 8:58 p.m.78 views

CVE-2019-10964

CVE-2019-10964 affects Medtronic MiniMed insulin pumps (508 and Paradigm series, and related models) via an improper access control weakness in wireless RF communications. The vulnerability allows an attacker with adjacent access to inject, replay, modify, or intercept data and potentially change...

8.8CVSS7.2AI score0.01234EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2019/06/28 8:58 p.m.24 views

CVE-2019-10964 Medtronic MiniMed 508 and Paradigm Series Insulin Pumps Improper Access Control

Medtronic MiniMed Insulin Pumps are designed to communicate using a wireless RF with other devices, such as blood glucose meters, glucose sensor transmitters, and CareLink USB devices. This wireless RF communication protocol does not properly implement authentication or authorization. An attacker...

7.1CVSS8.7AI score0.01234EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2019/06/28 3:14 p.m.30 views

FDA Warns of Potentially Fatal Flaws in Medtronic Insulin Pumps

The Food and Drug Administration FDA has issued an emergency alert, warning that Medtronic MiniMed insulin pumps are vulnerable to potentially life-threatening cyberattacks. Specifically impacted are Medtronic’s MiniMed insulin pumps, the MiniMed 508 insulin pump and MiniMed Paradigm series insul...

5.8CVSS0.1AI score0.01234EPSS
Exploits0References11
ICS
ICS
added 2019/06/27 12:0 a.m.29 views

Medtronic MiniMed 508 and Paradigm Series Insulin Pumps

1. EXECUTIVE SUMMARY CVSS v3 7.1 Vendor: Medtronic Equipment: MiniMed 508 and Paradigm Series Insulin Pumps Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability may allow an attacker with adjacent access to one of the affected products to...

8.8CVSS8.8AI score0.01234EPSS
Exploits0References5
CNVD
CNVD
added 2018/08/14 12:0 a.m.3 views

Multiple Medtronic Product Information Disclosure Vulnerabilities

Medtronic MMT-508 MiniMed insulin pump and others are different models of insulin pumps from Medtronic, USA. An information disclosure vulnerability exists in several Medtronic products, which can be exploited by an attacker to capture the information passed between the controller and pump when t...

5.3CVSS5.2AI score0.00712EPSS
Exploits0References1
CNVD
CNVD
added 2018/08/14 12:0 a.m.4 views

Multiple Medtronic Products Information Disclosure Vulnerability (CNVD-2018-18137)

Medtronic MMT-508 MiniMed insulin pump and others are different models of insulin pumps from Medtronic, USA. An information disclosure vulnerability exists in a number of Medtronic products, which arises from communication between the pump and wireless accessories being passed in clear text. An...

5.3CVSS5.2AI score0.00474EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/08/14 12:0 a.m.10 views

The vulnerability of Medtronic MiniMed medical equipment is caused by deficiencies in the authentication mechanism, allowing unauthorized users to replicate intercepted requests.

The vulnerability of Medtronic MiniMed 508, 522, 523, 523K, 551, 722, 723, 723K, and 751 insulin pumps is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows attackers to bypass the authentication process by executing a hijacked request...

6.5CVSS5.5AI score0.00712EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/08/13 10:0 p.m.19 views

CVE-2018-10634 Medtronic MiniMed MMT-500/MMT-503 Remote Controllers Cleartext Transmission of Sensitive Information

Communications between Medtronic MiniMed MMT pumps and wireless accessories are transmitted in cleartext. A sufficiently skilled attacker could capture these transmissions and extract sensitive information, such as device serial numbers...

4.8CVSS5.3AI score0.00474EPSS
Exploits0References3
NVD
NVD
added 2018/08/13 9:48 p.m.20 views

CVE-2018-14781

Medtronic MiniMed MMT devices when paired with a remote controller and having the “easy bolus” and “remote bolus” options enabled non-default, are vulnerable to a capture-replay attack. An attacker can capture the wireless transmissions between the remote controller and the pump and replay them t...

5.3CVSS5.2AI score0.00712EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2012/10/23 8:59 p.m.5 views

Medical Devices Vulnerable to Hacking

A heart defibrillator remotely controlled by a villainous hacker to trigger a fatal heart attack? Yes now its possible, The Government Accountability Office has released a report warning that medical devices are vulnerable to hacking and calling for greater FDA oversight of such devices. The...

7.2AI score
Exploits0
ThreatPost
ThreatPost
added 2011/10/27 2:44 p.m.15 views

Blind Attack On Wireless Insulin Pumps Could Deliver Lethal Dose

Barnaby Jack, famous for getting ATMs to disgorge an avalanche of cash on stage at the Black Hat Briefings, says he has developed an attack that could be used to deliver a lethal dose of insulin to diabetics using the embedded pumps. Jack, a security researcher at McAfee, demonstrated the hack at...

0.9AI score
Exploits0References7
NVD
NVD
added 2011/09/02 11:55 p.m.19 views

CVE-2011-3386

Unspecified vulnerability in Medtronic Paradigm wireless insulin pump 512, 522, 712, and 722 allows remote attackers to modify the delivery of an insulin bolus dose and cause a denial of service adverse human health effects via unspecified vectors involving wireless communications and knowledge o...

4CVSS6.6AI score0.0145EPSS
Exploits0References8
Rows per page
Query Builder