Schließen
Vulnerability Disclosure Document
Overview
An insecure implementation of the proprietary protocol DNET in Product CGM MEDICO allows attackers within the intranet to eavesdrop and manipulate data on the protocol because encryption is optional for this connection.
Vulnerability ID
CVE ID for this Vulnerability: CVE-2025-48981
Description
- Software/Product(s) containing the vulnerability: CGM MEDICO
- Version number of vulnerable software/product: 29.0, 29.1
- Product Vendor: CompuGroup Medical
- Type of Vulnerability, if known: CWE-31, insecure commnication
- Vulnerability Description: n insecure implementation of the proprietary protocol DNET in Product CGM MEDICO allows attackers within the intranet to eavesdrop and manipulate data on the protocol because encryption is optional for this connection.
- How may an attacker exploit this vulnerability? :
- Exploitation requirements
The attacker must have access to the on-premise network where CGM MEDICO is deployed.
Attack method:
The attacker can intercept unencrypted traffic between the client and server using protocol DNET and manipulate requests in transit.
- Exploitation requirements
Impact
- What is the impact of exploiting this vulnerability?
- An attacker could eavesdrop on sensitive information, including patient and user data.
Impact on Integrity:
The attacker can alter transmitted data, leading to incorrect application behavior.
- An attacker could eavesdrop on sensitive information, including patient and user data.
CVSS Score
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L 8.6 HIGH
Resolution
- Version containing the fix: 29.01.02.01
- URL or contact information to obtain the fix: Software-Update-Vorschau 29.01.02.01 - Aktuelles aus Entwicklung und Support - Medico Kundenportal
- Mitigation advice below:
https://medicowiki.cgm.com/doku.php?id=cgm:medico_system:linux_services:tls_classic