CVE-2018-19014

Vulnerability

Log files on Dräger Infinity Delta patient monitors (all versions), Delta XL (all versions), Kappa (all versions), and Infinity Explorer C700 (all versions) are accessible over an unauthenticated network connection. This weakness is classified as CWE-532: Information Exposure Through Log Files [1]. No authentication is required to retrieve the logs.

Exploitation

An attacker with network adjacency (CVSS v3 attack vector: Adjacent) can send a request to the log file endpoints without any authentication. By repeatedly fetching these files, the attacker can extract information about the internal workings of the patient monitor, its physical location, and the wired network configuration [1]. The attack requires low skill and no user interaction.

Impact

Successful exploitation results in information disclosure of device internals, location data, and network configuration details. The CVSS v3 base score for this vulnerability is 4.3 (Medium), with a low confidentiality impact and no impact on integrity or availability [1]. This information could aid an attacker in further attacks but does not directly enable code execution or denial of service.

Mitigation

The ICS-CERT advisory (ICSMA-19-022-01) recommends implementing network segmentation and restricting access to patient monitors to trusted hosts only. No vendor-provided patch is referenced for this specific issue; organizations should consult Dräger for updated guidance and consider deploying firewalls or access control lists to limit exposure of the log file endpoints [1].