CISA issues warning for cardiac device system vulnerability

A severe vulnerability has been identified in a cardiac device from Medtronic, which could allow hackers to delete, steal or modify data from the device, exposes healthcare organizations’ networks, and even allows remote code execution (RCE) and denial-of-service (DoS) attacks. The device’s application versions 1.11 and earlier are affected. An update is available to eliminate the vulnerability.