VYPR
Vendor

DarioHealth

Products
2
CVEs
4
Across products
4
Status
Private

Products

2

Recent CVEs

4
  • CVE-2025-20060HigFeb 28, 2025
    risk 0.49cvss 7.5epss 0.00

    An attacker could expose cross-user personal identifiable information (PII) and personal health information transmitted to the Android device via the Dario Health application database.

  • CVE-2025-24318MedFeb 28, 2025
    risk 0.44cvss 6.8epss 0.00

    Cookie policy is observable via built-in browser tools. In the presence of XSS, this could lead to full session compromise.

  • CVE-2025-24316MedFeb 28, 2025
    risk 0.34cvss 5.3epss 0.00

    The Dario Health Internet-based server infrastructure is vulnerable due to exposure of development environment details, which could lead to unsafe functionality.

  • CVE-2025-24843MedFeb 28, 2025
    risk 0.33cvss 5.1epss 0.00

    Insecure file retrieval process that facilitates potential for file manipulation to affect product stability and confidentiality, integrity, authenticity, and attestation of stored data.