Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Medtronic MyCareLink 24950 Patient Monitor Insufficient Verification of Data Authenticity
Vulnerability Description
Medtronic MyCareLink Patient Monitor’s update service does not sufficiently verify the authenticity of the data uploaded. An attacker who obtains per-product credentials from the monitor and paired implantable cardiac device information can potentially upload invalid data to the Medtronic CareLink network.
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
Vulnerability Type
对数据真实性的验证不充分
Vulnerability Title
Medtronic MyCareLink 24950 Patient Monitor和24952 Patient Monitor 安全漏洞
Vulnerability Description
Medtronic MyCareLink 24950 Patient Monitor和24952 Patient Monitor都是美国Medtronic公司的用于监测病人生命体征的监护仪设备。 Medtronic MyCareLink 24950 Patient Monitor和24952 Patient Monitor中存在安全漏洞,该漏洞源于受影响的产品更新服务没有充分地验证被上传数据的真实性。攻击者可借助该漏洞该向Medtronic CareLink网络中上传无效的数据。
CVSS Information
N/A
Vulnerability Type
N/A