Vulnerability: Per-Product Credentials Exposure in Medtronic 2090 Carelink Programmer

Vulnerability: Per-Product Credentials Exposure in Medtronic 2090 Carelink Programmer

CVE-2018-5446 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

All versions of the Medtronic 2090 Carelink Programmer are affected by a per-product username and password that is stored in a recoverable format which could allow an attacker with physical access to a 2090 Programmer to obtain per-product credentials to the software deployment network.

Learn more about our Network Penetration Testing.