ICSMA-17-241-01
·
Published 2017-08-29
·
View on CISA ICS-CERT ↗
ICSMA-17-241-01_Abbott Laboratories ' Accent/Anthem, Accent MRI, Assurity/Allure, and Assurity MRI Pacemaker Vulnerabilities
CVSS 7.5
HIGH
CVEs (3)
Remediations
- The pacemaker firmware update will implement RF wake-up protections and limit the commands that can be issued to pacemakers via RF communications. Additionally the updated pacemaker firmware will prevent unencrypted transmission of patient information (Accent and Anthem only). The firmware update can be applied to an implanted pacemaker via the Merlin PCS Programmer by a healthcare provider. It is recommended that healthcare providers discuss this update with their patients and carefully consider the potential risk of a cybersecurity attack along with the risk of performing a firmware update. Implementation of the firmware update is to be determined based on the physician's professional judgment and patient management considerations. Pacemakers manufactured beginning August 28, 2017, will have this update preloaded on devices.
Affected Vendors
Abbott Laboratories
Affected Products (4)
Abbott Laboratories
·
Accent MRI
< august 28
Abbott Laboratories
·
Assurity/Allure
< august 28
Abbott Laboratories
·
Assurity MRI
< august 28
Abbott Laboratories
·
Accent/Anthem
< august 28
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more