Vulnerabilities > Medtronic > 2090 Carelink Programmer > Low

DATE CVE VULNERABILITY TITLE RISK
2018-05-04 CVE-2018-5446 Insufficiently Protected Credentials vulnerability in Medtronic 2090 Carelink Programmer Firmware
All versions of the Medtronic 2090 Carelink Programmer are affected by a per-product username and password that is stored in a recoverable format which could allow an attacker with physical access to a 2090 Programmer to obtain per-product credentials to the software deployment network.
local
low complexity
medtronic CWE-522
2.1
2018-05-04 CVE-2018-5448 Path Traversal vulnerability in Medtronic 2090 Carelink Programmer Firmware
All versions of the Medtronic 2090 Carelink Programmer are affected by a directory traversal vulnerability where the product's software deployment network could allow an attacker to read files on the system.
low complexity
medtronic CWE-22
2.7