CVE-2018-5448

Medtronic 2090 Carelink Programmer Relative Path Traversal

CVSS 4.8 MEDIUMEPSS 0.7%CWE-23

Medtronic 2090 CareLink Programmer’s software deployment network contains a directory traversal vulnerability that could allow an attacker to read files on the system.

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Produtos afetados

Medtronic · 2090 CareLink Programmer Medtronic · 29901 Encore Programmer

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://global.medtronic.com/xg-en/product-security/security-bulletins/carelink-2090-29901.html https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-01 https://www.cisa.gov/news-events/ics-medical-advisories/icsma-18-058-01