How severe is CVE-2019-18256?

CVE-2019-18256 has a CVSS v3 score of 4.6 (MEDIUM).

CVE-2019-18256

4.6MEDIUM

BIOTRONIK CardioMessenger II, The affected products use individual per-device credentials that are stored in a recoverable format. An attacker with physical access to the CardioMessenger can use these

Published: 6/29/2020Updated: 11/21/2024

Description

BIOTRONIK CardioMessenger II, The affected products use individual per-device credentials that are stored in a recoverable format. An attacker with physical access to the CardioMessenger can use these credentials for network authentication and decryption of local data in transit.

AI AnalysisPowered by AI

Affected Products

biotronikcardiomessenger_ii-s_gsm_firmware

2.20

biotronikcardiomessenger_ii-s_gsm

biotronikcardiomessenger_ii-s_t-line_firmware

2.20

biotronikcardiomessenger_ii-s_t-line

References

https://www.us-cert.gov/ics/advisories/icsma-20-170-05
Third Party AdvisoryUS Government Resource
https://www.us-cert.gov/ics/advisories/icsma-20-170-05
Third Party AdvisoryUS Government Resource