Medtronic 2090 CareLink Programmer all versions The affected product uses a virtual private network connection to securely download updates. The product does not verify it is still connected to this virtual private network before downloading updates. An attacker with local network access to the programmer could influence these communications.
References
Link | Resource |
---|---|
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-01 | Third Party Advisory US Government Resource |
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-01 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 03:41
Type | Values Removed | Values Added |
---|---|---|
References | () https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-01 - Third Party Advisory, US Government Resource |
Information
Published : 2018-07-03 01:29
Updated : 2024-11-21 03:41
NVD link : CVE-2018-10596
Mitre link : CVE-2018-10596
CVE.ORG link : CVE-2018-10596
JSON object : View
Products Affected
medtronic
- 2090_carelink_programmer
- 2090_carelink_programmer_firmware