VYPR
Unrated severityNVD Advisory· Published Dec 14, 2020· Updated May 22, 2025

Medtronic MyCareLink Smart Time-of-check Time-of-use Race Condition

CVE-2020-27252

Description

Medtronic MyCareLink Smart 25000 is

vulnerable to a race condition in the MCL Smart Patient Reader software update system, which allows unsigned firmware to be uploaded and executed on the Patient Reader. If exploited, an attacker could remotely execute code on the MCL Smart Patient Reader device, leading to control of the device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.