← Back to home
ICSMA-23-061-01  ·  Published 2023-03-06  ·  View on CISA ICS-CERT ↗

Medtronic Micro Clinician and InterStim Apps

CVSS 6.4 MEDIUM

Risk Summary

Successful exploitation of this vulnerability could cause the clinician application’s custom password to be reset to default, resulting in unauthorized control of the clinician therapy application.

CVEs (1)

Remediations

  • The following mitigations have been provided by Medtronic:
  • An app update is available as of February 23, 2023 that will fix the vulnerability.
  • Users should refer to the Medtronic Security Bulletin for the correct Medtronic Support contact for help updating the app.

Affected Vendors

Medtronic

Affected Products (2)

Medtronic · Micro Clinician A51200
Medtronic · InterStim X Clinician A51300

Affected Sectors

Healthcare and Public Health

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more