CVE-2019-25716
MEDIUMDrger Infinity Delta, Delta XL, and Kappa - Denial of Service via Malformed Network Packet
Title source: llmDescription
Dräger Infinity Delta, Delta XL, and Kappa patient monitors contain a denial-of-service vulnerability that allows remote attackers to cause the monitor to reboot by sending a malformed network packet. Attackers can repeatedly send malformed network packets to disrupt patient monitoring until the device falls back to default configuration and loses network connectivity.
References (3)
Core 3
Core References
Various Sources vendor-advisory
https://static.draeger.com/security
Vendor Advisory vendor-advisory
https://static.draeger.com/security/download/2019-01-22-draeger-infinity-delta-vf10-1-security-advisory.pdf
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/dr-ger-infinity-delta-kappa-patient-monitor-dos-via-malformed-network-packet
Scores
CVSS v3
6.5
EPSS
0.0020
EPSS Percentile
9.9%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-15
Status
published
Products (6)
Dräger/Infinity Delta
Infinity Delta
Dräger/Infinity Delta
all software versions
Dräger/Infinity Delta XL
Infinity Delta XL
Dräger/Infinity Delta XL
all software versions
Dräger/Infinity Kappa
Infinity Kappa
Dräger/Infinity Kappa
all software versions
Published
Jun 01, 2026
Tracked Since
Jun 02, 2026