Sign-up

ID

VAR-201903-1617


CVE

CVE-2019-6540


TITLE

plural Medtronic Cryptographic vulnerabilities in products

Trust: 0.8

sources: JVNDB: JVNDB-2019-003225

DESCRIPTION

The Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and 24952, CareLink Monitor version 2490C, CareLink 2090 Programmer, Amplia CRT-D, Claria CRT-D, Compia CRT-D, Concerto CRT-D, Concerto II CRT-D, Consulta CRT-D, Evera ICD, Maximo II CRT-D and ICD, Mirro ICD, Nayamed ND ICD, Primo ICD, Protecta ICD and CRT-D, Secura ICD, Virtuoso ICD, Virtuoso II ICD, Visia AF ICD, and Viva CRT-D does not implement encryption. An attacker with adjacent short-range access to a target product can listen to communications, including the transmission of sensitive data. plural Medtronic The product contains cryptographic vulnerabilities.Information may be obtained. MyCareLink Monitor and others are products developed by Medtronic. An access control error vulnerability exists in several Medtronic products that stems from the failure of the Conexus telemetry protocol to perform cryptographic operations that an attacker can use to intercept communications (including sensitive information transmitted). Medtronic Conexus Radio Frequency Telemetry Protocol is prone to multiple security vulnerabilities. An attacker can exploit this issue to gain access to sensitive information and bypass the security mechanism and gain unauthorized access. This may lead to further attacks

Trust: 2.7

sources: NVD: CVE-2019-6540 // JVNDB: JVNDB-2019-003225 // CNVD: CNVD-2019-09066 // BID: 107544 // IVD: 1e9dad07-7958-4810-ac1e-1cb019c0c368 // VULHUB: VHN-157975

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: 1e9dad07-7958-4810-ac1e-1cb019c0c368 // CNVD: CNVD-2019-09066

AFFECTED PRODUCTS

vendor:medtronicmodel:carelink monitor 2490cscope: - version: -

Trust: 1.7

vendor:medtronicmodel:amplia crt-dscope: - version: -

Trust: 1.4

vendor:medtronicmodel:consulta crt-dscope: - version: -

Trust: 1.4

vendor:medtronicmodel:concerto ii crt-dscope: - version: -

Trust: 1.4

vendor:medtronicmodel:concerto crt-dscope: - version: -

Trust: 1.4

vendor:medtronicmodel:compia crt-dscope: - version: -

Trust: 1.4

vendor:medtronicmodel:claria crt-dscope: - version: -

Trust: 1.4

vendor:medtronicmodel:virtuoso icdscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:maximo ii crt-dscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:evera icdscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:concerto ii crt-dscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:maximo ii icdscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:primo icdscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:amplia crt-dscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:nayamed nd icdscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:mirro icdscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:mycarelink monitor 24952scope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:consulta crt-dscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:claria crt-dscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:virtuoso ii icdscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:compia crt-dscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:protecta crt-dscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:secura icdscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:concerto crt-dscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:visia af icdscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:carelink 2090scope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:protecta icdscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:viva crt-dscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:mycarelink monitor 24950scope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:carelink monitor 2490cscope:eqversion: -

Trust: 1.0

vendor:medtronicmodel:24950 mycarelink monitorscope: - version: -

Trust: 0.8

vendor:medtronicmodel:24952 mycarelink monitorscope: - version: -

Trust: 0.8

vendor:medtronicmodel:carelink 2090scope: - version: -

Trust: 0.8

vendor:medtronicmodel:carelink programmerscope:eqversion:2090

Trust: 0.6

vendor:medtronicmodel:mycarelink monitorscope:eqversion:24950

Trust: 0.6

vendor:medtronicmodel:mycarelink monitorscope:eqversion:24952

Trust: 0.6

vendor:medtronicmodel:primo icdscope: - version: -

Trust: 0.6

vendor:medtronicmodel:protecta icdscope: - version: -

Trust: 0.6

vendor:medtronicmodel:protecta crt-dscope: - version: -

Trust: 0.6

vendor:medtronicmodel:secura icdscope: - version: -

Trust: 0.6

vendor:medtronicmodel:virtuoso icdscope: - version: -

Trust: 0.6

vendor:medtronicmodel:virtuoso ii icdscope: - version: -

Trust: 0.6

vendor:medtronicmodel:visia af icdscope: - version: -

Trust: 0.6

vendor:medtronicmodel:viva crt-dscope: - version: -

Trust: 0.6

vendor:medtronicmodel:nayamed nd icdscope: - version: -

Trust: 0.6

vendor:medtronicmodel:mirro icdscope: - version: -

Trust: 0.6

vendor:medtronicmodel:maximo ii icdscope: - version: -

Trust: 0.6

vendor:medtronicmodel:maximo ii crt-dscope: - version: -

Trust: 0.6

vendor:medtronicmodel:evera icdscope: - version: -

Trust: 0.6

vendor:medtronicmodel:viva crt-dscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:visia af icdscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:virtuoso ii icdscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:virtuoso icdscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:secura icdscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:protecta icdscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:protecta crt-dscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:primo icdscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:mirro icdscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:maximo ii crt-dscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:maximo icdscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:evera icdscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:consulta crt-dscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:concerto ii crt-dscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:concerto crt-dscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:compia crt-dscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:claria crt-dscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:carelink programmerscope:eqversion:20900

Trust: 0.3

vendor:medtronicmodel:amplia crt-dscope:eqversion:0

Trust: 0.3

vendor:medtronicmodel:mycarelink monitorscope:eqversion:249520

Trust: 0.3

vendor:medtronicmodel:mycarelink monitorscope:eqversion:249500

Trust: 0.3

vendor:mycarelink monitor 24950model: - scope:eqversion: -

Trust: 0.2

vendor:consulta crt dmodel: - scope:eqversion: -

Trust: 0.2

vendor:evera icdmodel: - scope:eqversion: -

Trust: 0.2

vendor:maximo ii crt dmodel: - scope:eqversion: -

Trust: 0.2

vendor:maximo ii icdmodel: - scope:eqversion: -

Trust: 0.2

vendor:mirro icdmodel: - scope:eqversion: -

Trust: 0.2

vendor:nayamed nd icdmodel: - scope:eqversion: -

Trust: 0.2

vendor:primo icdmodel: - scope:eqversion: -

Trust: 0.2

vendor:protecta icdmodel: - scope:eqversion: -

Trust: 0.2

vendor:protecta crt dmodel: - scope:eqversion: -

Trust: 0.2

vendor:secura icdmodel: - scope:eqversion: -

Trust: 0.2

vendor:mycarelink monitor 24952model: - scope:eqversion: -

Trust: 0.2

vendor:virtuoso icdmodel: - scope:eqversion: -

Trust: 0.2

vendor:virtuoso ii icdmodel: - scope:eqversion: -

Trust: 0.2

vendor:visia af icdmodel: - scope:eqversion: -

Trust: 0.2

vendor:viva crt dmodel: - scope:eqversion: -

Trust: 0.2

vendor:carelink monitor 2490cmodel: - scope:eqversion: -

Trust: 0.2

vendor:carelink 2090model: - scope:eqversion: -

Trust: 0.2

vendor:amplia crt dmodel: - scope:eqversion: -

Trust: 0.2

vendor:claria crt dmodel: - scope:eqversion: -

Trust: 0.2

vendor:compia crt dmodel: - scope:eqversion: -

Trust: 0.2

vendor:concerto crt dmodel: - scope:eqversion: -

Trust: 0.2

vendor:concerto ii crt dmodel: - scope:eqversion: -

Trust: 0.2

sources: IVD: 1e9dad07-7958-4810-ac1e-1cb019c0c368 // CNVD: CNVD-2019-09066 // BID: 107544 // JVNDB: JVNDB-2019-003225 // NVD: CVE-2019-6540

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-6540
value: MEDIUM

Trust: 1.0

NVD: CVE-2019-6540
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2019-09066
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201903-831
value: MEDIUM

Trust: 0.6

IVD: 1e9dad07-7958-4810-ac1e-1cb019c0c368
value: MEDIUM

Trust: 0.2

VULHUB: VHN-157975
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2019-6540
severity: LOW
baseScore: 3.3
vectorString: AV:A/AC:L/AU:N/C:P/I:N/A:N
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 6.5
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2019-09066
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:C/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

IVD: 1e9dad07-7958-4810-ac1e-1cb019c0c368
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:C/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

VULHUB: VHN-157975
severity: LOW
baseScore: 3.3
vectorString: AV:A/AC:L/AU:N/C:P/I:N/A:N
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 6.5
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-6540
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector: ADJACENT
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 2.8
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: CVE-2019-6540
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector: ADJACENT NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: IVD: 1e9dad07-7958-4810-ac1e-1cb019c0c368 // CNVD: CNVD-2019-09066 // VULHUB: VHN-157975 // JVNDB: JVNDB-2019-003225 // CNNVD: CNNVD-201903-831 // NVD: CVE-2019-6540

PROBLEMTYPE DATA

problemtype:CWE-319

Trust: 1.1

problemtype:CWE-310

Trust: 0.9

sources: VULHUB: VHN-157975 // JVNDB: JVNDB-2019-003225 // NVD: CVE-2019-6540

THREAT TYPE

remote or local

Trust: 0.6

sources: CNNVD: CNNVD-201903-831

TYPE

encryption problem

Trust: 0.6

sources: CNNVD: CNNVD-201903-831

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2019-003225

PATCH
title:Top Pageurl:https://www.medtronic.com/us-en/index.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2019-003225

EXTERNAL IDS
db:NVDid:CVE-2019-6540
Trust: 3.6
db:ICS CERTid:ICSMA-19-080-01
Trust: 3.4
db:BIDid:107544
Trust: 2.6
db:CNNVDid:CNNVD-201903-831
Trust: 0.9
db:CNVDid:CNVD-2019-09066
Trust: 0.8
db:JVNDBid:JVNDB-2019-003225
Trust: 0.8
db:AUSCERTid:ESB-2019.0950.2
Trust: 0.6
db:IVDid:1E9DAD07-7958-4810-AC1E-1CB019C0C368
Trust: 0.2
db:VULHUBid:VHN-157975
Trust: 0.1
sources:
            
            
            IVD: 1e9dad07-7958-4810-ac1e-1cb019c0c368 // 
            
            
            
            CNVD: CNVD-2019-09066 // 
            
            
            
            VULHUB: VHN-157975 // 
            
            
            
            BID: 107544 // 
            
            
            
            JVNDB: JVNDB-2019-003225 // 
            
            
            
            CNNVD: CNNVD-201903-831 // 
            
            
            
            NVD: CVE-2019-6540

REFERENCES
url:https://ics-cert.us-cert.gov/advisories/icsma-19-080-01
Trust: 3.4
url:http://www.securityfocus.com/bid/107544
Trust: 2.3
url:https://nvd.nist.gov/vuln/detail/cve-2019-6540
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-6540
Trust: 0.8
url:https://www.auscert.org.au/bulletins/esb-2019.0950.2/
Trust: 0.6
url:https://us-cert.cisa.gov/ics/advisories/icsma-19-080-01
Trust: 0.6
url:https://www.us-cert.gov/ics/advisories/icsma-19-080-01
Trust: 0.6
url:https://www.auscert.org.au/bulletins/77634
Trust: 0.6
url:http://www.medtronic.com
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2019-09066 // 
            
            
            
            VULHUB: VHN-157975 // 
            
            
            
            BID: 107544 // 
            
            
            
            JVNDB: JVNDB-2019-003225 // 
            
            
            
            CNNVD: CNNVD-201903-831 // 
            
            
            
            NVD: CVE-2019-6540

CREDITS
currently with University of Birmingham; Flavio D. Garcia; Tom Chothia of the University of Birmingham; and Rik Willems of University Hospital Gasthuisberg Leuven reported these vulnerabilities to NCCIC.,Peter Morgan of Clever Security; Dave Singelée and Bart Preneel of KU Leuven; Eduard Marin formerly of KU Leuven, currently with University of Birmingham; Flavio D. Garcia; Tom Chothia of the University of Birmingham; and Rik Willems of University Hospital Gasthuisberg Leuven, currently with University of Birmingham; Flavio D. Garcia; Tom Chothia of the University of Birmingham; and Rik Willems of University Hospita,Peter Morgan of Clever Security; Dave Singelée and Bart Preneel of KU Leuven; Eduard Marin formerly of KU Leuven
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201903-831

SOURCES
db:IVDid:1e9dad07-7958-4810-ac1e-1cb019c0c368
db:CNVDid:CNVD-2019-09066
db:VULHUBid:VHN-157975
db:BIDid:107544
db:JVNDBid:JVNDB-2019-003225
db:CNNVDid:CNNVD-201903-831
db:NVDid:CVE-2019-6540

LAST UPDATE DATE
2024-08-14T14:51:16.702000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2019-09066date:2019-04-04T00:00:00
db:VULHUBid:VHN-157975date:2021-11-03T00:00:00
db:BIDid:107544date:2019-03-21T00:00:00
db:JVNDBid:JVNDB-2019-003225date:2019-05-13T00:00:00
db:CNNVDid:CNNVD-201903-831date:2021-11-04T00:00:00
db:NVDid:CVE-2019-6540date:2021-11-03T18:57:30.320

SOURCES RELEASE DATE
db:IVDid:1e9dad07-7958-4810-ac1e-1cb019c0c368date:2019-04-04T00:00:00
db:CNVDid:CNVD-2019-09066date:2019-04-04T00:00:00
db:VULHUBid:VHN-157975date:2019-03-26T00:00:00
db:BIDid:107544date:2019-03-21T00:00:00
db:JVNDBid:JVNDB-2019-003225date:2019-05-13T00:00:00
db:CNNVDid:CNNVD-201903-831date:2019-03-21T00:00:00
db:NVDid:CVE-2019-6540date:2019-03-26T18:29:01.060