CVE-2020-27256

Published: Jan 19, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, a hard-coded physician PIN in the physician menu of the insulin pump allows attackers with physical access to change insulin therapy settings.

Vendor	Product	Versions
n/a	SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A	affected `Dana Diabecare RS, AnyDana-i, AnyDana-A All versions prior to 3.0`

Weaknesses (CWE)

CWE-798

References

https://us-cert.cisa.gov/ics/advisories/icsma-21-012-01

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-27256

Description

Affected Products

Weaknesses (CWE)

References