CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-14781

Medtronic MiniMed MMT devices when paired with a remote controller and having the “easy bolus” and “remote bolus” options enabled (non-default), are vulnerable to a capture-replay attack. An attacker can capture the wireless transmissions between the remote controller and the pump and replay them to cause an insulin (bolus) delivery.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.0%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 2.9

References

Products affected by CVE-2018-14781

Medtronicdiabetes » 508 Minimed Insulin Pump » Version: N/A

cpe:2.3:h:medtronicdiabetes:508_minimed_insulin_pump:-
Medtronicdiabetes » 522 Paradigm Real-Time » Version: N/A

cpe:2.3:h:medtronicdiabetes:522_paradigm_real-time:-
Medtronicdiabetes » 523 Paradigm Revel » Version: N/A

cpe:2.3:h:medtronicdiabetes:523_paradigm_revel:-
Medtronicdiabetes » 523k Paradigm Revel » Version: N/A

cpe:2.3:h:medtronicdiabetes:523k_paradigm_revel:-
Medtronicdiabetes » 551 Minimed 530g » Version: N/A

cpe:2.3:h:medtronicdiabetes:551_minimed_530g:-
Medtronicdiabetes » 722 Paradigm Real-Time » Version: N/A

cpe:2.3:h:medtronicdiabetes:722_paradigm_real-time:-
Medtronicdiabetes » 723 Paradigm Revel » Version: N/A

cpe:2.3:h:medtronicdiabetes:723_paradigm_revel:-
Medtronicdiabetes » 723k Paradigm Revel » Version: N/A

cpe:2.3:h:medtronicdiabetes:723k_paradigm_revel:-
Medtronicdiabetes » 751 Minimed 530g » Version: N/A

cpe:2.3:h:medtronicdiabetes:751_minimed_530g:-
Medtronicdiabetes » 508 Minimed Insulin Pump Firmware » Version: N/A

cpe:2.3:o:medtronicdiabetes:508_minimed_insulin_pump_firmware:-
Medtronicdiabetes » 522 Paradigm Real-Time Firmware » Version: N/A

cpe:2.3:o:medtronicdiabetes:522_paradigm_real-time_firmware:-
Medtronicdiabetes » 523 Paradigm Revel Firmware » Version: N/A

cpe:2.3:o:medtronicdiabetes:523_paradigm_revel_firmware:-
Medtronicdiabetes » 523k Paradigm Revel Firmware » Version: N/A

cpe:2.3:o:medtronicdiabetes:523k_paradigm_revel_firmware:-
Medtronicdiabetes » 551 Minimed 530g Firmware » Version: N/A

cpe:2.3:o:medtronicdiabetes:551_minimed_530g_firmware:-
Medtronicdiabetes » 722 Paradigm Real-Time Firmware » Version: N/A

cpe:2.3:o:medtronicdiabetes:722_paradigm_real-time_firmware:-
Medtronicdiabetes » 723 Paradigm Revel Firmware » Version: N/A

cpe:2.3:o:medtronicdiabetes:723_paradigm_revel_firmware:-
Medtronicdiabetes » 723k Paradigm Revel Firmware » Version: N/A

cpe:2.3:o:medtronicdiabetes:723k_paradigm_revel_firmware:-
Medtronicdiabetes » 751 Minimed 530g Firmware » Version: N/A

cpe:2.3:o:medtronicdiabetes:751_minimed_530g_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-14781

Products

Pricing

Contact Us