Unrated severityNVD Advisory· Published Dec 14, 2020· Updated May 22, 2025
Medtronic MyCareLink Smart Time-of-check Time-of-use Race Condition
CVE-2020-27252
Description
Medtronic MyCareLink Smart 25000 is
vulnerable to a race condition in the MCL Smart Patient Reader software update system, which allows unsigned firmware to be uploaded and executed on the Patient Reader. If exploited, an attacker could remotely execute code on the MCL Smart Patient Reader device, leading to control of the device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Medtronic/Smart Model 25000 Patient Readerv5Range: All versions
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.