LiveActive security incident?Get immediate response
CVE Record

CVE-2018-14781: Medtronic MiniMed MMT-500/MMT-503 Remote Controllers Authentication Bypass by Capture-replay

Medtronic MiniMed MMT devices when paired with a remote controller and having the “easy bolus” and “remote bolus” options enabled (non-default), are vulnerable to a capture-replay attack. An attacker can capture the wireless transmissions between the remote controller and the pump and replay them to cause an insulin (bolus) delivery.

MediumCVSS 5.3Not KEV-listedUpdated
Glexia's TakeAutomated analysis

Security readout for executives and security teams

This vulnerability affects certain Medtronic MiniMed insulin pumps only when paired with MMT-500/MMT-503 remote controllers and non-default bolus features are enabled. A nearby attacker who previously captures valid wireless remote traffic could replay it and trigger an insulin bolus. The business urgency is patient-safety focused, not broad enterprise compromise. Exposure appears limited to listed Medtronic MiniMed pump models using MMT-500/MMT-503 remote controllers with easy bolus and remote bolus enabled. These options are described as non-default, so deployed exposure should be confirmed device-by-device. Treat as a targeted patient-safety risk requiring biomedical engineering and clinical governance review. It is not a general IT emergency, but exposed devices should be identified and managed because the impact can directly affect insulin delivery. Mitigation focus: Check Medtronic’s current product-security bulletin for approved clinical mitigation guidance.; Inventory affected pump models and paired MMT-500/MMT-503 remote controllers.; Confirm whether easy bolus and remote bolus are enabled on each device..

Prepared

Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.

Potential ATT&CK relevance

Conservative CVE-to-ATT&CK context

These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.

ATT&CK lookup starting points

Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.

cwe · low confidence lookup

CWE-294: Exact CWE lookup

Use the exact CWE identifier as the starting point before reviewing related ATT&CK behavior. Open the exact CWE lookup page first, then review the ATT&CK searches from that MITRE weakness context. This is a Glexia lookup hint, not an official ATT&CK mapping.

Open ATT&CK lookup
description · low confidence lookup

Credential and access behavior lookup

The CVE wording references authentication or credential exposure, so valid-account and credential-access review may help. This is a Glexia inferred lookup path, not an official MITRE, ATT&CK, or CVE Program mapping.

Open ATT&CK lookup
cve · low confidence lookup

CVE-2018-14781 mapping review

Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.

Open ATT&CK lookup
Vulnerability profileCVE Program record
Severity
Medium
CVSS
5.3 (3.1)
Known Exploited
No
Published

Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Official CVE source material

CNA and ADP enrichment extracted from CVE v5

These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.

1CVSS vectors
0Timeline events
0ADP providers
3Source links

CVSS vector scores

1 official score

We collect every scored CVSS vector available in the official CNA and ADP containers. When more than one version is present, the table keeps the source vectors side by side instead of collapsing them into the highest score.

ScoreVersionSeverityVectorExploitImpactSource
5.3CVSS 3.1MediumCVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N1.63.6Primary CVE score

Vulnerability scoring details

Base CVSS 3.1 score

5.3Medium
CVSS 3.1 vector shape for CVE-2018-14781Attack VectorAttack ComplexityPrivileges RequiredUser InteractionScopeConfidentiality ImpactIntegrity ImpactAvailability Impact

Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Attack Vector
NetworkAdjacentLocalPhysical
Attack Complexity
LowHigh
Privileges Required
NoneLowHigh
User Interaction
NoneRequired
Scope
ChangedUnchanged
Confidentiality Impact
HighLowNone
Integrity Impact
HighLowNone
Availability Impact
HighLowNone
Affected products

Products and packages named in the record

VendorProductVersion / packageStatus
MedtronicMMT- 508 - MiniMed pumpAll versionsunaffected
MedtronicMMT – 511 pump ParadigmAll versionsunaffected
MedtronicMMT – 512 / MMT – 712 Paradigm x12All versionsunaffected
MedtronicMMT – 515 / MMT – 715 Paradigm x15All versionsunaffected
MedtronicMMT – 522 / MMT – 722 Paradigm REAL-TIMEAll versionsunaffected
MedtronicMMT – 522(K) / MMT – 722(K) Paradigm REAL-TIMEAll versionsunaffected
MedtronicMMT – 523 / MMT – 723 Paradigm RevelAll versionsunaffected
MedtronicMMT – 523(K) / MMT – 723(K) ParadigmAll versionsunaffected
MedtronicMMT – 554 / MMT – 754 MiniMed VeoAll versionsunaffected
MedtronicMMT – 551 / MMT – 751 MiniMed 530GAll versionsunaffected
Weakness

CWE details

CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.

CWE-294 · source CWE mapping

Authentication Bypass by Capture-replay

Authentication Bypass by Capture-replay represents a recurring weakness pattern that can create exploitable paths when design, validation, or implementation controls are missing.