Unrated severityNVD Advisory· Published Dec 4, 2025· Updated Dec 8, 2025
CVE-2025-12995
CVE-2025-12995
Description
Medtronic CareLink Network allows an unauthenticated remote attacker to perform a brute force attack on an API endpoint that could be used to determine a valid password under certain circumstances. This issue affects CareLink Network: before December 4, 2025.
Affected products
2- Range: <2025-12-04
- Medtronic/CareLink Networkv5Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.