CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-18248

BIOTRONIK CardioMessenger II, The affected products transmit credentials in clear-text prior to switching to an encrypted communication channel. An attacker can disclose the product’s client credentials for connecting to the BIOTRONIK Remote Communication infrastructure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.6%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 3.3

References

https://www.us-cert.gov/ics/advisories/icsma-20-170-05
https://www.us-cert.gov/ics/advisories/icsma-20-170-05

Products affected by CVE-2019-18248

Biotronik » Cardiomessenger Ii-S Gsm » Version: N/A

cpe:2.3:h:biotronik:cardiomessenger_ii-s_gsm:-
Biotronik » Cardiomessenger Ii-S T-Line » Version: N/A

cpe:2.3:h:biotronik:cardiomessenger_ii-s_t-line:-
Biotronik » Cardiomessenger Ii-S Gsm Firmware » Version: 2.20

cpe:2.3:o:biotronik:cardiomessenger_ii-s_gsm_firmware:2.20
Biotronik » Cardiomessenger Ii-S T-Line Firmware » Version: 2.20

cpe:2.3:o:biotronik:cardiomessenger_ii-s_t-line_firmware:2.20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-18248

Products

Pricing

Contact Us