N/A

Insulet Omnipod Insulin Management System insulin pump product ID 19191 and 40160 is designed to communicate using a wireless RF with an Insulet manufactured Personal Diabetes Manager device. This wireless RF communication protocol does not properly implement authentication or authorization. An attacker with access to one of the affected insulin pump models may be able to modify and/or intercept data. This vulnerability could also allow attackers to change pump settings and control insulin delivery.

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L

访问控制不恰当

Insulet Omnipod Insulin Management System 安全漏洞

Insulet Omnipod Insulin Management System是美国Insulet公司的一套胰岛素管理系统。 Insulet Omnipod Insulin Management System 存在安全漏洞，该漏洞源于无线射频通信协议没有正确实现身份验证或授权。 访问受影响的胰岛素泵模型之一的攻击者可能能够修改和/或拦截数据。 此漏洞还可能允许攻击者更改泵设置并控制胰岛素输送。

N/A

N/A