Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
None
Privileges Required
None
Attack Vector
Adjacent_network
0

CVE-2019-6538

Disclosure Date: March 25, 2019
CVE-2019-6538 CVSS v3 Base Score: 6.5
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and 24952, CareLink Monitor version 2490C, CareLink 2090 Programmer, Amplia CRT-D, Claria CRT-D, Compia CRT-D, Concerto CRT-D, Concerto II CRT-D, Consulta CRT-D, Evera ICD, Maximo II CRT-D and ICD, Mirro ICD, Nayamed ND ICD, Primo ICD, Protecta ICD and CRT-D, Secura ICD, Virtuoso ICD, Virtuoso II ICD, Visia AF ICD, and Viva CRT-D does not implement authentication or authorization. An attacker with adjacent short-range access to an affected product, in situations where the product’s radio is turned on, can inject, replay, modify, and/or intercept data within the telemetry communication. This communication protocol provides the ability to read and write memory values to affected implanted cardiac devices; therefore, an attacker could exploit this communication protocol to change memory in the implanted cardiac device.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
6.5 Medium
Impact Score:
3.6
Exploitability Score:
2.8
Vector:
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Attack Vector (AV):
Adjacent_network
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
None
Integrity (I):
High
Availability (A):
None

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
Medtronic Conexus Radio Frequency Telemetry Protocol MyCareLink Monitor versions 24950 and 24952
Medtronic Conexus Radio Frequency Telemetry Protocol CareLink Monitor version 2490C
Medtronic Conexus Radio Frequency Telemetry Protocol CareLink 2090 Programmer
Medtronic Conexus Radio Frequency Telemetry Protocol Amplia CRT-D
Medtronic Conexus Radio Frequency Telemetry Protocol Claria CRT-D
Medtronic Conexus Radio Frequency Telemetry Protocol Compia CRT-D
Medtronic Conexus Radio Frequency Telemetry Protocol Concerto CRT-D
Medtronic Conexus Radio Frequency Telemetry Protocol Concerto II CRT-D
Medtronic Conexus Radio Frequency Telemetry Protocol Consulta CRT-D
Medtronic Conexus Radio Frequency Telemetry Protocol Evera ICD
Medtronic Conexus Radio Frequency Telemetry Protocol Maximo II CRT-D and ICD
Medtronic Conexus Radio Frequency Telemetry Protocol Mirro ICD
Medtronic Conexus Radio Frequency Telemetry Protocol Nayamed ND ICD
Medtronic Conexus Radio Frequency Telemetry Protocol Primo ICD
Medtronic Conexus Radio Frequency Telemetry Protocol Protecta ICD and CRT-D
Medtronic Conexus Radio Frequency Telemetry Protocol Secura ICD
Medtronic Conexus Radio Frequency Telemetry Protocol Virtuoso ICD
Medtronic Conexus Radio Frequency Telemetry Protocol Virtuoso II ICD
Medtronic Conexus Radio Frequency Telemetry Protocol Visia AF ICD
Medtronic Conexus Radio Frequency Telemetry Protocol Viva CRT-D
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis