{"vulnerability": "CVE-2018-10626", "sightings": [{"uuid": "be8dab60-1111-4658-bec4-e4b0a750a4d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-10626", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17308", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2018-10626\n\ud83d\udd25 CVSS Score: 4.4 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: Medtronic MyCareLink Patient Monitor\u2019s update service does not sufficiently verify the authenticity of the data uploaded. An attacker who obtains per-product credentials from the monitor and paired implantable cardiac device information can potentially upload invalid data to the Medtronic CareLink network.\n\ud83d\udccf Published: 2018-08-10T18:00:00Z\n\ud83d\udccf Modified: 2025-05-22T16:13:52.072Z\n\ud83d\udd17 References:\n1. https://global.medtronic.com/xg-en/product-security/security-bulletins/mycarelink-8-7-18.html\n2. https://ics-cert.us-cert.gov/advisories/ICSMA-18-219-01\n3. http://www.securityfocus.com/bid/105042", "creation_timestamp": "2025-05-22T16:43:56.000000Z"}]}