Medtronic Mycarelink Patient Monitor 24952
5 CVEs affecting Medtronic Mycarelink Patient Monitor 24952. Latest disclosed: 2026-05-07. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-4397 | Medium | 6.8 | 2026-05-07 | Medtronic MyCareLink Patient Monitor uses per-product credentials that are stored in a recoverable format. An attacker can use these credentials to modify encr… |
CVE-2025-4386 | Medium | 6.8 | 2026-05-07 | Medtronic MyCareLink Patient Monitor has an internal serial interface, which allows an attacker with physical access to access a login prompt via a UART termin… |
CVE-2025-4395 | Medium | 6.8 | 2025-07-24 | Medtronic MyCareLink Patient Monitor has a built-in user account with an empty password, which allows an attacker with physical access to log in with no passwo… |
CVE-2025-4394 | Medium | 6.8 | 2025-07-24 | Medtronic MyCareLink Patient Monitor uses an unencrypted filesystem on internal storage, which allows an attacker with physical access to read and modify files… |
CVE-2025-4393 | Medium | 6.5 | 2025-07-24 | Medtronic MyCareLink Patient Monitor has an internal service that deserializes data, which allows a local attacker to interact with the service by crafting a b… |