CVE-2019-25718
HIGHDrger Infinity Explorer C700 - Privilege Escalation via Kiosk Mode Dialog Interaction
Title source: llmDescription
Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out of kiosk mode and access the underlying operating system through a specific dialog interaction. Attackers can exploit this kiosk escape to take control of the operating system and cause the device to display incorrect or no information from the connected Delta Family patient monitor.
References (3)
Core 3
Core References
Various Sources vendor-advisory
https://static.draeger.com/security
Vendor Advisory vendor-advisory
https://static.draeger.com/security/download/2019-01-22-draeger-infinity-delta-vf10-1-security-advisory.pdf
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/dr-ger-infinity-explorer-c700-privilege-escalation-via-kiosk-mode-bypass
Scores
CVSS v3
8.4
EPSS
0.0012
EPSS Percentile
2.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-451
Status
published
Products (2)
Dräger/Infinity Explorer C700
Infinity Explorer C700
Dräger/Infinity Explorer C700
all software versions
Published
Jun 01, 2026
Tracked Since
Jun 02, 2026