Vulnerabilities > Medtronic > 2090 Carelink Programmer Firmware

DATE CVE VULNERABILITY TITLE RISK
2018-07-03 CVE-2018-10596 Information Exposure vulnerability in Medtronic 2090 Carelink Programmer Firmware
Medtronic 2090 CareLink Programmer all versions The affected product uses a virtual private network connection to securely download updates.
low complexity
medtronic CWE-200
8.0
2018-05-04 CVE-2018-5448 Path Traversal vulnerability in Medtronic 2090 Carelink Programmer Firmware
All versions of the Medtronic 2090 Carelink Programmer are affected by a directory traversal vulnerability where the product's software deployment network could allow an attacker to read files on the system.
low complexity
medtronic CWE-22
5.7
2018-05-04 CVE-2018-5446 Insufficiently Protected Credentials vulnerability in Medtronic 2090 Carelink Programmer Firmware
All versions of the Medtronic 2090 Carelink Programmer are affected by a per-product username and password that is stored in a recoverable format which could allow an attacker with physical access to a 2090 Programmer to obtain per-product credentials to the software deployment network.
low complexity
medtronic CWE-522
5.3