CVE-2020-27258
N/A
N/A
Summary
In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, an information disclosure vulnerability in the communication protocol of the insulin pump and its AnyDana-i and AnyDana-A mobile applications allows unauthenticated attackers to extract the pump’s keypad lock PIN via Bluetooth Low Energy.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A | Dana Diabecare RS, AnyDana-i, AnyDana-A All versions prior to 3.0 | affected |
Weaknesses
- CWE-522: INSUFFICIENTLY PROTECTED CREDENTIALS CWE-522
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.