← back
CVE-2025-20049

Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application Cross-site Scripting

CVSS 7.1 HIGHEPSS 0.3%CWE-79
The Dario Health portal service application is vulnerable to XSS, which could allow an attacker to obtain sensitive information.
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:A/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H
Affected products
Dario Health · Dario Application Database and Internet-based Server Infrastructure

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-058-01https://www.dariohealth.com/contact/