exploitDog

CVE-2025-4393

Опубликовано: 24 июл. 2025

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Medtronic MyCareLink Patient Monitor has an internal service that deserializes data, which allows a local attacker to interact with the service by crafting a binary payload to crash the service or elevate privileges.

This issue affects MyCareLink Patient Monitor models 24950 and 24952: before June 25, 2025

Ссылки

https://global.medtronic.com/xg-en/product-security/security-bulletins.html

EPSS

Процентиль: 4%

0.00018

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-502

Связанные уязвимости

GHSA-783m-53vh-rmp2

CVSS3: 6.5

github

7 месяцев назад

Medtronic MyCareLink Patient Monitor has an internal service that deserializes data, which allows a local attacker to interact with the service by crafting a binary payload to crash the service or elevate privileges. This issue affects MyCareLink Patient Monitor models 24950 and 24952: before June 25, 2025

EPSS

Процентиль: 4%

0.00018

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-502