Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2019-25720— Dräger SC Monitoring Devices DoS via Malformed Network Packet

CVSS 6.5 · Medium EPSS 0.20% · P10

Possible ATT&CK Techniques 1AI

T1499 · Endpoint Denial of Service

Affected Version Matrix 5

VendorProductVersion RangeStatus
DrägerSC 6002XLSC 6002XLaffected
DrägerSC 7000SC 7000affected
DrägerSC6802XLSC6802XLaffected
DrägerSC8000SC8000affected
DrägerSC90000 XLSC90000 XLaffected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-25720

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Dräger SC Monitoring Devices DoS via Malformed Network Packet
Source: NVD (National Vulnerability Database)
Vulnerability Description
Dräger SC Monitoring devices (SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL) contain a denial-of-service vulnerability in all software versions that allows unauthenticated attackers to reboot the monitor by sending a malformed network packet. Attackers can repeatedly send such malformed packets to disrupt patient monitoring until the device falls back to default configuration and loses network connectivity.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
CWE-1286
Source: NVD (National Vulnerability Database)
Vulnerability Title
Dräger SC Monitoring devices 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Dräger SC Monitoring devices是德国Dräger公司的一系列临床生命体征监护设备。 Dräger SC Monitoring devices存在安全漏洞,该漏洞源于发送畸形网络数据包可能导致设备重启,从而中断患者监护。以下产品受到影响:SC 6002XL、SC 6802XL、SC 7000、SC 8000和SC 9000 XL。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
DrägerSC 6002XL SC 6002XL -
DrägerSC6802XL SC6802XL -
DrägerSC 7000 SC 7000 -
DrägerSC8000 SC8000 -
DrägerSC90000 XL SC90000 XL -

II. Public POCs for CVE-2019-25720

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2019-25720

登录查看更多情报信息。

Vendor Advisories for CVE-2019-25720 (2)

IV. Related Vulnerabilities

V. Comments for CVE-2019-25720

No comments yet


Leave a comment