Security Advisory

CVE-2025-12994

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-04 20:02:06

Last updated 2025-12-08 21:02:50

Assigner Medtronic

State PUBLISHED

Description

Medtronic CareLink Network allows an unauthenticated remote attacker to initiate a request for security questions to an API endpoint that could be used to determine a valid user account. This issue affects CareLink Network: before December 4, 2025.

← Browse all CVEs View on cve.org ↗