CVE-2017-12716

CVE-2017-12716

Vendor Abbott Laboratories
Product Accent and Anthem
Weakness CWE-311 · Missing encryption
Published April 25, 2018
Last update September 17, 2024

CVSS base score

What the vulnerability does

01Description

Abbott Laboratories Accent and Anthem pacemakers manufactured prior to Aug 28, 2017 transmit unencrypted patient information via RF communications to programmers and home monitoring units. Additionally, the Accent and Anthem pacemakers store the optional patient information without encryption. CVSS v3 base score: 3.1, CVSS vector string: AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N. Abbott has developed a firmware update to help mitigate the identified vulnerabilities.

Key dates

02Disclosure timeline

April 25, 2018 CVE published
September 17, 2024 Record updated