HIGHπŸ‡΅πŸ‡± Wersja polska

CVE-2020-27264

CVSS 8.8v3.1pub. 2021-01-19upd. 2024-11-21

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, the communication protocol of the insulin pump and its AnyDana-i and AnyDana-A mobile applications use deterministic keys, which allows unauthenticated, physically proximate attackers to brute-force the keys via Bluetooth Low Energy.

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Sooil Anydana A

    HW
    Sooil
    wszystkie wersje
  • Sooil Anydana A Firmware

    OS
    Sooil
    < 3.0
  • Sooil Anydana I

    HW
    Sooil
    wszystkie wersje
  • Sooil Anydana I Firmware

    OS
    Sooil
    < 3.0
  • Sooil Diabecare Rs

    HW
    Sooil
    wszystkie wersje
  • Sooil Diabecare Rs Firmware

    OS
    Sooil
    < 3.0
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2020-27256MEDIUM6.8ten sam produkt

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, a hard-coded physician PIN in the physic...

CVE-2020-27258MEDIUM6.5ten sam produkt

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, an information disclosure vulnerability ...

CVE-2020-27266MEDIUM6.5ten sam produkt

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, a client-side control vulnerability in t...

CVE-2020-27268MEDIUM6.5ten sam produkt

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, a client-side control vulnerability in t...

CVE-2020-27269MEDIUM5.7ten sam produkt

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, the communication protocol of the insuli...

CVE-2020-27264 β€” Sooil β€” Anydana-A β€” HIGH β€” CVSS 8.8 | CVEbaza.pl