CVE-2018-5446

Medtronic 2090 Carelink Programmer Storing Passwords in a Recoverable Format

CVSS 4.9 MEDIUMEPSS 0.4%CWE-257

Medtronic 2090 CareLink Programmer uses a per-product username and password that is stored in a recoverable format.

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Produtos afetados

Medtronic · 2090 CareLink Programmer Medtronic · 29901 Encore Programmer

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://global.medtronic.com/xg-en/product-security/security-bulletins/carelink-2090-29901.html https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-01 https://www.cisa.gov/news-events/ics-medical-advisories/icsma-18-058-01