Known Vulnerabilities for products from Medtronic
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Medtronic".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Medtronic can be found at device.report : Medtronic
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-4397 json | Not Provided | 2026-05-07 | 2026-05-07 | |
| CVE-2025-4386 json | Not Provided | 2026-05-07 | 2026-05-07 | |
| CVE-2023-31222 json | Deserialization of untrusted data in Microsoft Messaging Queuing Service in Medtronic's Paceart Optima versions 1.11 and ear... | 8.8 - HIGH | 2023-06-29 | 2023-07-07 |
| CVE-2023-25931 json | Medtronic identified that the Pelvic Health clinician apps, which are installed on the Smart Programmer mobile device, have a... | 6.8 - MEDIUM | 2023-03-01 | 2023-11-07 |
| CVE-2022-32537 json | A vulnerability exists which could allow an unauthorized user to learn aspects of the communication protocol used to pair sys... | Not Provided | 2022-12-12 | 2026-05-07 |
| CVE-2020-27252 json | Medtronic MyCareLink Smart 25000 all versions are vulnerable to a race condition in the MCL Smart Patient Reader software upd... | 8.1 - HIGH | 2020-12-14 | 2020-12-15 |
| CVE-2020-25187 json | Medtronic MyCareLink Smart 25000 all versions are vulnerable when an attacker who gains auth runs a debug command, which is s... | 9.8 - CRITICAL | 2020-12-14 | 2020-12-15 |
| CVE-2020-25183 json | Medtronic MyCareLink Smart 25000 all versions contain an authentication protocol vuln where the method used to auth between M... | 8.8 - HIGH | 2020-12-14 | 2020-12-15 |
| CVE-2019-13543 json | Medtronic Valleylab Exchange Client version 3.4 and below, Valleylab FT10 Energy Platform (VLFT10GEN) software version 4.0.0 ... | 7.5 - HIGH | 2019-11-08 | 2019-11-13 |
| CVE-2019-13539 json | Medtronic Valleylab Exchange Client version 3.4 and below, Valleylab FT10 Energy Platform (VLFT10GEN) software version 4.0.0 ... | 7.8 - HIGH | 2019-11-08 | 2020-10-09 |
| CVE-2019-13535 json | In Medtronic Valleylab FT10 Energy Platform (VLFT10GEN) version 2.1.0 and lower and version 2.0.3 and lower, and Valleylab LS... | 4.6 - MEDIUM | 2019-11-08 | 2020-10-09 |
| CVE-2019-13531 json | In Medtronic Valleylab FT10 Energy Platform (VLFT10GEN) version 2.1.0 and lower and version 2.0.3 and lower, and Valleylab LS... | 4.6 - MEDIUM | 2019-11-08 | 2020-10-09 |
| CVE-2019-10964 json | In Medtronic MinMed 508 and Medtronic Minimed Paradigm Insulin Pumps, Versions, MiniMed 508 pump – All versions, MiniMed Pa... | 8.8 - HIGH | 2019-06-28 | 2020-08-24 |
| CVE-2019-6540 json | The Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and 24952, CareLink Monitor versio... | 6.5 - MEDIUM | 2019-03-26 | 2021-11-03 |
| CVE-2019-6538 json | The Conexus telemetry protocol utilized within Medtronic MyCareLink Monitor versions 24950 and 24952, CareLink Monitor versio... | 6.5 - MEDIUM | 2019-03-25 | 2020-10-06 |
| CVE-2018-18984 json | Medtronic CareLink 2090 Programmer CareLink 9790 Programmer 29901 Encore Programmer, all versions, The affected products do n... | 4.6 - MEDIUM | 2018-12-14 | 2020-09-18 |
| CVE-2018-10634 json | Medtronic MMT 508 MiniMed insulin pump, 522 / MMT - 722 Paradigm REAL-TIME, 523 / MMT - 723 Paradigm Revel, 523K / MMT - 723K... | 5.3 - MEDIUM | 2018-08-13 | 2019-10-09 |
| CVE-2018-10631 json | Medtronic N'Vision Clinician Programmer 8840 N'Vision Clinician Programmer, all versions, and 8870 N'Vision removable Applica... | 6.8 - MEDIUM | 2018-07-13 | 2019-10-09 |
| CVE-2018-10626 json | Medtronic MyCareLink Patient Monitor’s update service does not sufficiently verify the authenticity of the data uploaded. ... | Not Provided | 2018-08-10 | 2026-05-19 |
| CVE-2018-10622 json | Medtronic MyCareLink Patient Monitor uses per-product credentials that are stored in a recoverable format. An attacker can u... | Not Provided | 2018-08-10 | 2026-05-19 |
Known software with vulnerabilities from Medtronic
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Medtronic | Valleylab Exchange Client | - |
| Hardware | Medtronic | Valleylab Ft10 Energy Platform | - |
| Operating System | Medtronic | Valleylab Ft10 Energy Platform Firmware | - |
| Hardware | Medtronic | Valleylab Fx8 Energy Platform | - |
| Operating System | Medtronic | Valleylab Fx8 Energy Platform Firmware | - |
| Hardware | Medtronic | Valleylab Ls10 Energy Platform | - |
| Operating System | Medtronic | Valleylab Ls10 Energy Platform Firmware | - |