Vulnerabilities > Medtronic > 2090 Carelink Programmer Firmware > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2018-05-04	CVE-2018-5446	Insufficiently Protected Credentials vulnerability in Medtronic 2090 Carelink Programmer Firmware All versions of the Medtronic 2090 Carelink Programmer are affected by a per-product username and password that is stored in a recoverable format which could allow an attacker with physical access to a 2090 Programmer to obtain per-product credentials to the software deployment network. local low complexity medtronic CWE-522	2.1
2018-05-04	CVE-2018-5448	Path Traversal vulnerability in Medtronic 2090 Carelink Programmer Firmware All versions of the Medtronic 2090 Carelink Programmer are affected by a directory traversal vulnerability where the product's software deployment network could allow an attacker to read files on the system. low complexity medtronic CWE-22	2.7

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.