Vulnerability Details CVE-2020-27266
In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, a client-side control vulnerability in the insulin pump and its AnyDana-i and AnyDana-A mobile applications allows physically proximate attackers to bypass user authentication checks via Bluetooth Low Energy.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.3%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 3.3
References
Products affected by CVE-2020-27266
-
cpe:2.3:h:sooil:anydana-a:-
-
cpe:2.3:h:sooil:anydana-i:-
-
cpe:2.3:h:sooil:diabecare_rs:-
-
cpe:2.3:o:sooil:anydana-a_firmware:*
-
cpe:2.3:o:sooil:anydana-i_firmware:*
-
cpe:2.3:o:sooil:diabecare_rs_firmware:*