PT-2020-20418 · Abbott · Abbott Freestyle Libre Sensors+2
Published
2020-02-16
·
Updated
2020-02-28
·
CVE-2020-8997
CVSS v2.0
5.8
Medium
| Vector | AV:A/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Abbott FreeStyle Libre sensors versions prior to February 2020
Abbott FreeStyle Libre 14-day versions prior to February 2020
Abbott FreeStyle Libre 2 versions prior to February 2020
Description
The issue allows remote attackers within close proximity to enable write access to memory via a specific NFC unlock command. It is estimated that older generation Abbott FreeStyle Libre sensors are affected.
Recommendations
For Abbott FreeStyle Libre sensors versions prior to February 2020, update to a version released after February 2020 to resolve the issue.
For Abbott FreeStyle Libre 14-day versions prior to February 2020, update to a version released after February 2020 to resolve the issue.
For Abbott FreeStyle Libre 2 versions prior to February 2020, update to a version released after February 2020 to resolve the issue.
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Abbott Freestyle Libre 14-Day
Abbott Freestyle Libre 2
Abbott Freestyle Libre Sensors