Cleartext Transmission Vulnerability in Medtronic Insulin Pumps

CVE-2018-10634 · LOW Severity

AV:A/AC:M/AU:N/C:P/I:N/A:N

Medtronic MMT 508 MiniMed insulin pump, 522 / MMT - 722 Paradigm REAL-TIME, 523 / MMT - 723 Paradigm Revel, 523K / MMT - 723K Paradigm Revel, and 551 / MMT - 751 MiniMed 530G communications between the pump and wireless accessories are transmitted in cleartext. A sufficiently skilled attacker could capture these transmissions and extract sensitive information, such as device serial numbers.

Learn more about our Wireless Penetration Test.