CVE-2019-25717

Severity CVSS v4.0:
MEDIUM
Type:
CWE-538 Insertion of Sensitive Information into Externally-Accessible File or Directory
Publication date:
02/06/2026
Last modified:
30/06/2026

Description

Dräger Infinity Delta, Delta XL, and Kappa patient monitors contain an information disclosure vulnerability that allows unauthenticated network attackers to access log files over a network connection. Attackers can retrieve device internals, location information, and wired network configuration details from the exposed log files.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:draeger:infinity_delta_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:draeger:infinity_delta:-:*:*:*:*:*:*:*
cpe:2.3:o:draeger:delta_xl_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:draeger:delta_xl:-:*:*:*:*:*:*:*
cpe:2.3:o:draeger:kappa_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:draeger:kappa:-:*:*:*:*:*:*:*