Vulnerability Details CVE-2017-12714
Abbott Laboratories pacemakers manufactured prior to Aug 28, 2017 do not restrict or limit the number of correctly formatted "RF wake-up" commands that can be received, which may allow a nearby attacker to repeatedly send commands to reduce pacemaker battery life. CVSS v3 base score: 5.3, CVSS vector string: AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H. Abbott has developed a firmware update to help mitigate the identified vulnerabilities.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.4%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 6.1
References
Products affected by CVE-2017-12714
-
cpe:2.3:h:abbott:accent:-
-
cpe:2.3:h:abbott:accent_mri:-
-
cpe:2.3:h:abbott:accent_st:-
-
cpe:2.3:h:abbott:allure:-
-
cpe:2.3:h:abbott:anthem:-
-
cpe:2.3:h:abbott:assurity:-
-
cpe:2.3:h:abbott:assurity_mri:-
-
cpe:2.3:o:abbott:accent_firmware:*
-
cpe:2.3:o:abbott:accent_mri_firmware:*
-
cpe:2.3:o:abbott:accent_st_firmware:*
-
cpe:2.3:o:abbott:allure_firmware:*
-
cpe:2.3:o:abbott:anthem_firmware:*
-
cpe:2.3:o:abbott:assurity_firmware:*
-
cpe:2.3:o:abbott:assurity_mri_firmware:*