CVE-2020-27252

HIGH

Medtronic MyCareLink Smart 25000 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-27252. PoCs published by OccultSlolem.

AI-analyzed exploit summary The repository contains only a React + TypeScript + Vite template with no exploit code or details related to CVE-2020-27252. It appears to be a placeholder or unrelated project.

Description

Medtronic MyCareLink Smart 25000 is vulnerable to a race condition in the MCL Smart Patient Reader software update system, which allows unsigned firmware to be uploaded and executed on the Patient Reader. If exploited, an attacker could remotely execute code on the MCL Smart Patient Reader device, leading to control of the device.

Exploits (1)

nomisec STUB
by OccultSlolem · poc
https://github.com/OccultSlolem/GatorMed

The repository contains only a React + TypeScript + Vite template with no exploit code or details related to CVE-2020-27252. It appears to be a placeholder or unrelated project.

Classification
Stub 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: N/A
No auth needed
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 8.8
EPSS 0.0368
EPSS Percentile 88.3%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Details

CWE
CWE-367
Status published
Products (1)
medtronic/mycarelink_smart_model_25000_firmware
Published Dec 14, 2020
Tracked Since Feb 18, 2026