CVE-2019-25717 MEDIUM

CVE-2019-25717: Dräger Infinity Delta/Kappa Patient Monitors Unauthenticated Log File Disclosure

Vendor Dräger
Product Infinity Delta
Weakness CWE-538
Published June 2, 2026
Last update June 3, 2026

CVSS base score

5.3/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Dräger Infinity Delta, Delta XL, and Kappa patient monitors contain an information disclosure vulnerability that allows unauthenticated network attackers to access log files over a network connection. Attackers can retrieve device internals, location information, and wired network configuration details from the exposed log files.

Key dates

02Disclosure timeline

June 2, 2026 CVE published
June 3, 2026 Record updated