CVE-2019-25720 HIGH

CVE-2019-25720: Dräger SC Monitoring Devices DoS via Malformed Network Packet

Vendor Dräger
Product SC 6002XL
Weakness CWE-1286
Published June 3, 2026
Last update June 3, 2026

CVSS base score

7.1/10
Attack vector Adjacent
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Dräger SC Monitoring devices (SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL) contain a denial-of-service vulnerability in all software versions that allows unauthenticated attackers to reboot the monitor by sending a malformed network packet. Attackers can repeatedly send such malformed packets to disrupt patient monitoring until the device falls back to default configuration and loses network connectivity.

Key dates

02Disclosure timeline

June 3, 2026 CVE published
June 3, 2026 Record updated