Jonathan Butts

2 exploits Active since Aug 2018
CVE-2018-10622 WRITEUP MEDIUM WRITEUP
Medtronic MyCareLink Patient Monitor - Info Disclosure
Medtronic MyCareLink Patient Monitor uses per-product credentials that are stored in a recoverable format. An attacker can use these credentials for network authentication.
CVSS 5.2
CVE-2018-10626 WRITEUP MEDIUM WRITEUP
Medtronic MyCareLink - Info Disclosure
Medtronic MyCareLink Patient Monitor’s update service does not sufficiently verify the authenticity of the data uploaded. An attacker who obtains per-product credentials from the monitor and paired implantable cardiac device information can potentially upload invalid data to the Medtronic CareLink network.
CVSS 4.4