Vulnerability in Ypsomed Mylife Cloud, Mobile Application

CVE-2021-27499

Ypsomed mylife Cloud, mylife Mobile Application, Ypsomed mylife Cloud: All versions prior to 1.7.2, Ypsomed mylife App: All versions prior to 1.7.5,The application layer encryption of the communication protocol between the Ypsomed mylife A…

EPSS: 0.001 (27.3th percentile) — read the EPSS interpretation.

Affected products

N/a Ypsomed Mylife Cloud, Mobile Application — versions Ypsomed mylife Cloud: All versions prior to 1.7.2, Ypsomed mylife App: All versions prior to 1.7.5

Weakness classification (CWE)

CWE-329 — Generation of Predictable IV with CBC Mode

References

us-cert.cisa.gov/ics/advisories/icsma-21-196-01 (x_refsource_MISC)