CVE-2019-6538

MITRE NVD CVE.ORG Print: PDF PDF

Summary

CVECVE-2019-6538
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2019-03-25 22:29:00 UTC
Updated2020-10-06 13:19:00 UTC
DescriptionThe Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and 24952, CareLink Monitor version 2490C, CareLink 2090 Programmer, Amplia CRT-D, Claria CRT-D, Compia CRT-D, Concerto CRT-D, Concerto II CRT-D, Consulta CRT-D, Evera ICD, Maximo II CRT-D and ICD, Mirro ICD, Nayamed ND ICD, Primo ICD, Protecta ICD and CRT-D, Secura ICD, Virtuoso ICD, Virtuoso II ICD, Visia AF ICD, and Viva CRT-D does not implement authentication or authorization. An attacker with adjacent short-range access to an affected product, in situations where the product’s radio is turned on, can inject, replay, modify, and/or intercept data within the telemetry communication. This communication protocol provides the ability to read and write memory values to affected implanted cardiac devices; therefore, an attacker could exploit this communication protocol to change memory in the implanted cardiac device.

Risk And Classification

Problem Types: CWE-306 | CWE-862

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Hardware Medtronic Amplia Crt-d - All All All
Hardware Medtronic Amplia Crt-d - All All All
Operating System Medtronic Amplia Crt-d Firmware - All All All
Operating System Medtronic Amplia Crt-d Firmware - All All All
Hardware Medtronic Carelink 2090 - All All All
Hardware Medtronic Carelink 2090 - All All All
Operating System Medtronic Carelink 2090 Firmware - All All All
Operating System Medtronic Carelink 2090 Firmware - All All All
Hardware Medtronic Carelink Monitor - All All All
Hardware Medtronic Carelink Monitor - All All All
Operating System Medtronic Carelink Monitor Firmware 2490c All All All
Operating System Medtronic Carelink Monitor Firmware 2490c All All All
Hardware Medtronic Claria Crt-d - All All All
Hardware Medtronic Claria Crt-d - All All All
Operating System Medtronic Claria Crt-d Firmware - All All All
Operating System Medtronic Claria Crt-d Firmware - All All All
Hardware Medtronic Compia Crt-d - All All All
Hardware Medtronic Compia Crt-d - All All All
Operating System Medtronic Compia Crt-d Firmware - All All All
Operating System Medtronic Compia Crt-d Firmware - All All All
Hardware Medtronic Concerto Crt-d - All All All
Hardware Medtronic Concerto Crt-d - All All All
Operating System Medtronic Concerto Crt-d Firmware - All All All
Operating System Medtronic Concerto Crt-d Firmware - All All All
Hardware Medtronic Concerto Ii Crt-d - All All All
Hardware Medtronic Concerto Ii Crt-d - All All All
Operating System Medtronic Concerto Ii Crt-d Firmware - All All All
Operating System Medtronic Concerto Ii Crt-d Firmware - All All All
Hardware Medtronic Consulta Crt-d - All All All
Hardware Medtronic Consulta Crt-d - All All All
Operating System Medtronic Consulta Crt-d Firmware - All All All
Operating System Medtronic Consulta Crt-d Firmware - All All All
Hardware Medtronic Evera Icd - All All All
Hardware Medtronic Evera Icd - All All All
Operating System Medtronic Evera Icd Firmware - All All All
Operating System Medtronic Evera Icd Firmware - All All All
Hardware Medtronic Maximo Ii Crt-d And Lcd - All All All
Hardware Medtronic Maximo Ii Crt-d And Lcd - All All All
Operating System Medtronic Maximo Ii Crt-d And Lcd Firmware - All All All
Operating System Medtronic Maximo Ii Crt-d And Lcd Firmware - All All All
Hardware Medtronic Mirro Icd - All All All
Hardware Medtronic Mirro Icd - All All All
Operating System Medtronic Mirro Icd Firmware - All All All
Operating System Medtronic Mirro Icd Firmware - All All All
Hardware Medtronic Mycarelink Monitor - All All All
Hardware Medtronic Mycarelink Monitor - All All All
Operating System Medtronic Mycarelink Monitor Firmware 24950 All All All
Operating System Medtronic Mycarelink Monitor Firmware 24952 All All All
Operating System Medtronic Mycarelink Monitor Firmware 24950 All All All
Operating System Medtronic Mycarelink Monitor Firmware 24952 All All All
Hardware Medtronic Nayamed Nd Icd - All All All
Hardware Medtronic Nayamed Nd Icd - All All All
Operating System Medtronic Nayamed Nd Icd Firmware - All All All
Operating System Medtronic Nayamed Nd Icd Firmware - All All All
Hardware Medtronic Primo Icd - All All All
Hardware Medtronic Primo Icd - All All All
Operating System Medtronic Primo Icd Firmware - All All All
Operating System Medtronic Primo Icd Firmware - All All All
Hardware Medtronic Protecta Icd And Crt-d - All All All
Hardware Medtronic Protecta Icd And Crt-d - All All All
Operating System Medtronic Protecta Icd And Crt-d Firmware - All All All
Operating System Medtronic Protecta Icd And Crt-d Firmware - All All All
Hardware Medtronic Secura Icd - All All All
Hardware Medtronic Secura Icd - All All All
Operating System Medtronic Secura Icd Firmware - All All All
Operating System Medtronic Secura Icd Firmware - All All All
Hardware Medtronic Virtuoso Icd - All All All
Hardware Medtronic Virtuoso Icd - All All All
Operating System Medtronic Virtuoso Icd Firmware - All All All
Operating System Medtronic Virtuoso Icd Firmware - All All All
Hardware Medtronic Virtuoso Ii Icd - All All All
Hardware Medtronic Virtuoso Ii Icd - All All All
Operating System Medtronic Virtuoso Ii Icd Firmware - All All All
Operating System Medtronic Virtuoso Ii Icd Firmware - All All All
Hardware Medtronic Visia Af Icd - All All All
Hardware Medtronic Visia Af Icd - All All All
Operating System Medtronic Visia Af Icd Firmware - All All All
Operating System Medtronic Visia Af Icd Firmware - All All All
Hardware Medtronic Viva Crt-d - All All All
Hardware Medtronic Viva Crt-d - All All All
Operating System Medtronic Viva Crt-d Firmware - All All All
Operating System Medtronic Viva Crt-d Firmware - All All All

References

ReferenceSourceLinkTags
Medtronic Conexus Radio Frequency Telemetry Protocol | CISA CONFIRM ics-cert.us-cert.gov Mitigation, Third Party Advisory, US Government Resource
Medtronic Conexus Radio Frequency Telemetry Protocol Multiple Security Vulnerabilities BID www.securityfocus.com Third Party Advisory, VDB Entry
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report