CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-10622

Medtronic MyCareLink Patient Monitor uses per-product credentials that are stored in a recoverable format. An attacker can use these credentials for network authentication and encryption of local data at rest.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.8%

CVSS Severity

CVSS v3 Score 7.1

CVSS v2 Score 1.9

References

http://www.securityfocus.com/bid/105042
https://global.medtronic.com/xg-en/product-security/security-bulletins/mycarelink-8-7-18.html
https://ics-cert.us-cert.gov/advisories/ICSMA-18-219-01
http://www.securityfocus.com/bid/105042
https://ics-cert.us-cert.gov/advisories/ICSMA-18-219-01

Products affected by CVE-2018-10622

Medtronic » Mycarelink 24950 Patient Monitor » Version: N/A

cpe:2.3:h:medtronic:mycarelink_24950_patient_monitor:-
Medtronic » Mycarelink 24952 Patient Monitor » Version: N/A

cpe:2.3:h:medtronic:mycarelink_24952_patient_monitor:-
Medtronic » Mycarelink 24950 Patient Monitor Firmware » Version: N/A

cpe:2.3:o:medtronic:mycarelink_24950_patient_monitor_firmware:-
Medtronic » Mycarelink 24952 Patient Monitor Firmware » Version: N/A

cpe:2.3:o:medtronic:mycarelink_24952_patient_monitor_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-10622

Products

Pricing

Contact Us