CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-27258

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, an information disclosure vulnerability in the communication protocol of the insulin pump and its AnyDana-i and AnyDana-A mobile applications allows unauthenticated attackers to extract the pump’s keypad lock PIN via Bluetooth Low Energy.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.0%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 3.3

References

https://us-cert.cisa.gov/ics/advisories/icsma-21-012-01
https://us-cert.cisa.gov/ics/advisories/icsma-21-012-01

Products affected by CVE-2020-27258

Sooil » Anydana-A » Version: Any

cpe:2.3:a:sooil:anydana-a:*
Sooil » Anydana-I » Version: Any

cpe:2.3:a:sooil:anydana-i:*
Sooil » Dana Diabecare Rs » Version: N/A

cpe:2.3:h:sooil:dana_diabecare_rs:-
Sooil » Dana Diabecare Rs Firmware » Version: Any

cpe:2.3:o:sooil:dana_diabecare_rs_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-27258

Products

Pricing

Contact Us