CVE-2019-6538 — CRITICAL (9.3)

Vulnerability Description

The Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and 24952, CareLink Monitor version 2490C, CareLink 2090 Programmer, Amplia CRT-D, Claria CRT-D, Compia CRT-D, Concerto CRT-D, Concerto II CRT-D, Consulta CRT-D, Evera ICD, Maximo II CRT-D and ICD, Mirro ICD, Nayamed ND ICD, Primo ICD, Protecta ICD and CRT-D, Secura ICD, Virtuoso ICD, Virtuoso II ICD, Visia AF ICD, and Viva CRT-D does not implement authentication or authorization. An attacker with adjacent short-range access to an affected product, in situations where the product’s radio is turned on, can inject, replay, modify, and/or intercept data within the telemetry communication. This communication protocol provides the ability to read and write memory values to affected implanted cardiac devices; therefore, an attacker could exploit this communication protocol to change memory in the implanted cardiac device.

CVSS Score

9.3

CRITICAL

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Medtronic	Mycarelink Monitor Firmware	24950
Medtronic	Mycarelink Monitor	-
Medtronic	Carelink Monitor Firmware	2490c
Medtronic	Carelink Monitor	-
Medtronic	Carelink 2090 Firmware	-
Medtronic	Carelink 2090	-
Medtronic	Amplia Crt-D Firmware	-
Medtronic	Amplia Crt-D	-
Medtronic	Claria Crt-D Firmware	-
Medtronic	Claria Crt-D	-
Medtronic	Compia Crt-D Firmware	-
Medtronic	Compia Crt-D	-
Medtronic	Concerto Crt-D Firmware	-
Medtronic	Concerto Crt-D	-
Medtronic	Concerto Ii Crt-D Firmware	-
Medtronic	Concerto Ii Crt-D	-
Medtronic	Consulta Crt-D Firmware	-
Medtronic	Consulta Crt-D	-
Medtronic	Evera Icd Firmware	-
Medtronic	Evera Icd	-

Related Weaknesses (CWE)

CWE-306 CWE-284 CWE-862

References

http://www.securityfocus.com/bid/107544Third Party AdvisoryVDB Entry
https://ics-cert.us-cert.gov/advisories/ICSMA-19-080-01MitigationThird Party AdvisoryUS Government Resource
http://www.securityfocus.com/bid/107544Third Party AdvisoryVDB Entry
https://ics-cert.us-cert.gov/advisories/ICSMA-19-080-01MitigationThird Party AdvisoryUS Government Resource

FAQ

What is CVE-2019-6538?

CVE-2019-6538 is a vulnerability with a CVSS score of 9.3 (CRITICAL). The Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and 24952, CareLink Monitor version 2490C, CareLink 2090 Programmer, Amplia CRT-D, Claria CRT-D, Compia CRT-D...

How severe is CVE-2019-6538?

CVE-2019-6538 has been rated CRITICAL with a CVSS base score of 9.3/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2019-6538?

Check the references section above for vendor advisories and patch information. Affected products include: Medtronic Mycarelink Monitor Firmware, Medtronic Mycarelink Monitor, Medtronic Carelink Monitor Firmware, Medtronic Carelink Monitor, Medtronic Carelink 2090 Firmware.