Medium severity6.5NVD Advisory· Published Aug 26, 2020· Updated Jun 17, 2026
CVE-2020-15486
CVE-2020-15486
Description
An issue was discovered on Dr Trust ECG Pen 2.00.08 devices. Because the Bluetooth LE support is implemented without a requirement for pairing or security, any attacker can access the GATT server of the device and can sniff the data being broadcasted while a measurement is being done. Also, saved data can also be extracted over a Bluetooth connection. In addition, an attacker can launch a man-in-the-middle attack against data integrity.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Dr Trust/ECG Pendescription
- Range: 2.00.08
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.