CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-18256

BIOTRONIK CardioMessenger II, The affected products use individual per-device credentials that are stored in a recoverable format. An attacker with physical access to the CardioMessenger can use these credentials for network authentication and decryption of local data in transit.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.5%

CVSS Severity

CVSS v3 Score 4.6

CVSS v2 Score 2.1

References

https://www.us-cert.gov/ics/advisories/icsma-20-170-05
https://www.us-cert.gov/ics/advisories/icsma-20-170-05

Products affected by CVE-2019-18256

Biotronik » Cardiomessenger Ii-S Gsm » Version: N/A

cpe:2.3:h:biotronik:cardiomessenger_ii-s_gsm:-
Biotronik » Cardiomessenger Ii-S T-Line » Version: N/A

cpe:2.3:h:biotronik:cardiomessenger_ii-s_t-line:-
Biotronik » Cardiomessenger Ii-S Gsm Firmware » Version: 2.20

cpe:2.3:o:biotronik:cardiomessenger_ii-s_gsm_firmware:2.20
Biotronik » Cardiomessenger Ii-S T-Line Firmware » Version: 2.20

cpe:2.3:o:biotronik:cardiomessenger_ii-s_t-line_firmware:2.20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-18256

Products

Pricing

Contact Us