Vulnerabilities (CVE)

Filtered by vendor Drtrust Subscribe
Filtered by product Electrocardiogram Pen
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-15486 1 Drtrust 2 Electrocardiogram Pen, Electrocardiogram Pen Firmware 2024-02-28 3.3 LOW 6.5 MEDIUM
An issue was discovered on Dr Trust ECG Pen 2.00.08 devices. Because the Bluetooth LE support is implemented without a requirement for pairing or security, any attacker can access the GATT server of the device and can sniff the data being broadcasted while a measurement is being done. Also, saved data can also be extracted over a Bluetooth connection. In addition, an attacker can launch a man-in-the-middle attack against data integrity.