VYPR
Medium severity4.4NVD Advisory· Published Aug 10, 2018· Updated Jun 17, 2026

CVE-2018-10626

CVE-2018-10626

Description

Medtronic MyCareLink Patient Monitor’s update service does not sufficiently verify the authenticity of the data uploaded. An attacker who obtains per-product credentials from the monitor and paired implantable cardiac device information can potentially upload invalid data to the Medtronic CareLink network.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:o:medtronic:mycarelink_24950_patient_monitor_firmware:-:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:o:medtronic:mycarelink_24950_patient_monitor_firmware:-:*:*:*:*:*:*:*
    • cpe:2.3:o:medtronic:mycarelink_24952_patient_monitor_firmware:-:*:*:*:*:*:*:*
    • (no CPE)
    • (no CPE)range: All versions
    • (no CPE)range: All versions

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.