CVE-2018-5446

MEDIUM

Medtronic 2090 CareLink Programmer - Info Disclosure

Title source: llm

Medtronic 2090 CareLink Programmer uses a per-product username and password that is stored in a recoverable format.

Core 3

Core References

Third Party Advisory, US Government Resource

Various Sources

Third Party Advisory, US Government Resource

CVSS v3 4.9

EPSS 0.0039

EPSS Percentile 30.5%

Attack Vector PHYSICAL

CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

CWE

CWE-522 CWE-257

Status published

Products (1)

medtronic/2090_carelink_programmer_firmware

Published May 04, 2018

Tracked Since Feb 18, 2026