QwikSec

Security Database

CVE

CWE

Training

CVE-2020-27268

Published: Jan 19, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, a client-side control vulnerability in the insulin pump and its AnyDana-i and AnyDana-A mobile applications allows physically proximate attackers to bypass checks for default PINs via Bluetooth Low Energy.

Vendor	Product	Versions
n/a	SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A	affected `Dana Diabecare RS, AnyDana-i, AnyDana-A All versions prior to 3.0`

Weaknesses (CWE)

References

https://us-cert.cisa.gov/ics/advisories/icsma-21-012-01

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2020-27268 - Security Vulnerability | QwikSec