CVE-2019-25718 HIGH

CVE-2019-25718: Dräger Infinity Explorer C700 Privilege Escalation via Kiosk Mode Bypass

Vendor Dräger
Product Infinity Explorer C700
Weakness CWE-451
Published June 1, 2026
Last update June 3, 2026

CVSS base score

8.6/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out of kiosk mode and access the underlying operating system through a specific dialog interaction. Attackers can exploit this kiosk escape to take control of the operating system and cause the device to display incorrect or no information from the connected Delta Family patient monitor.

Key dates

02Disclosure timeline

June 1, 2026 CVE published
June 3, 2026 Record updated