Dräger SC Monitoring Devices DoS via Malformed Network Packet

Advisories

Dräger SC Monitoring Devices DoS via Malformed Network Packet

severity: high
date: 6/3/2026
Affecting: SC 6002XL
SC6802XL
SC 7000
SC8000
SC90000 XL
CVE: CVE-2019-25720
CWE: CWE-1286 Improper Validation of Syntactic Correctness of Input
CVSS: 7.1
CVSS V4 Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
References: Vendor Advisory
Credit: Jeroen Slobbe and Max Grim
Description: Dräger SC Monitoring devices (SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL) contain a denial-of-service vulnerability in all software versions that allows unauthenticated attackers to reboot the monitor by sending a malformed network packet. Attackers can repeatedly send such malformed packets to disrupt patient monitoring until the device falls back to default configuration and loses network connectivity.

Ready to get Started?

Explore VulnCheck, a next-generation Cyber Threat Intelligence platform, which provides exploit and vulnerability intelligence to help you prioritize and remediate vulnerabilities that matter.

Vulnerability Prioritization
Prioritize vulnerabilities that matter based on the threat landscape and defer vulnerabilities that don't.
Early Warning System
Real-time alerting of changes in the vulnerability landscape so that you can take action before the attacks start.

Schedule a Demo