Unrated severityNVD Advisory· Published Dec 4, 2025· Updated Dec 8, 2025
CVE-2025-12994
CVE-2025-12994
Description
Medtronic CareLink Network allows an unauthenticated remote attacker to initiate a request for security questions to an API endpoint that could be used to determine a valid user account. This issue affects CareLink Network: before December 4, 2025.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<2025-12-04+ 1 more
- (no CPE)range: <2025-12-04
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.