PT-2018-1432 · Medtronic · Medtronic Mycarelink Patient Monitor

Billy Rios

Publicado

2018-08-07

Atualizado

2026-05-19

CVE-2018-10622

CVSS v3.1

6.8

Média

Vetor

AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Medtronic MyCareLink Patient Monitor versions (affected versions not specified)

Description A vulnerability was discovered in Medtronic MyCareLink Patient Monitor, where per-product credentials are stored in a recoverable format. This allows an attacker to use these credentials for network authentication and encryption of local data at rest, potentially revealing protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Insufficiently Protected Credentials

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-522CWE-313CWE-257

Identificadores relacionados

BDU:2018-00981

CVE-2018-10622

Produtos afetados

Medtronic Mycarelink Patient Monitor

PT-2018-1432 · Medtronic · Medtronic Mycarelink Patient Monitor

CVE-2018-10622

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 11