Medtronic Carelink Network — known CVE vulnerabilities
Every CVE whose affected-product data names Medtronic Carelink Network, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2025-12995 — CVSS 8.1 (high): Medtronic CareLink Network allows an unauthenticated remote attacker to perform a brute force attack on an API endpoint that could be used…
CVE-2025-12994 — CVSS 5.3 (medium): Medtronic CareLink Network allows an unauthenticated remote attacker to initiate a request for security questions to an API endpoint that…
CVE-2025-12996 — CVSS 4.1 (medium): Medtronic CareLink Network allows a local attacker with access to log files on an internal API server to view plaintext passwords from…
CVE-2025-12997 — CVSS 2.2 (low): Insecure Direct Object Reference vulnerability in Medtronic CareLink Network which allows an authenticated attacker with access to specific…