BIOTRONIK CardioMessenger II, The affected products do not encrypt sensitive information while at rest. An attacker with physical access to the CardioMessenger can disclose medical measurement data and the serial number from the implanted cardiac device the CardioMessenger is paired with.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsma-20-170-05 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2020-06-29T13:56:26
Updated: 2020-06-29T13:56:26
Reserved: 2019-10-22T00:00:00
Link: CVE-2019-18254
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-06-29T14:15:10.710
Modified: 2021-10-29T19:14:04.820
Link: CVE-2019-18254
JSON object: View
Redhat Information
No data.