CVE-2019-25722 - Vulnerability Details

- Dräger SC Monitoring Devices Hard-coded Credentials and DoS

Description

Dräger SC Monitoring devices (SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL) contain hard-coded plaintext credentials in source code and a denial-of-service vulnerability that allows local and remote attackers to compromise device integrity across all software versions. A local attacker with direct device access can use the hard-coded credentials to access service and clinical accounts and alter device configuration, while a remote attacker can send malformed network packets to cause repeated device reboots, ultimately resulting in loss of network connectivity and disruption of patient monitoring.

Published: 2026-06-02

Score: 7.2 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability exposes plaintext credentials embedded in the device source code, enabling an attacker with direct physical or remote network access to authenticate as a service or clinical user and modify device settings. Additionally, malformed network packets trigger repeated reboots, causing loss of connectivity and significant downtime. The resulting compromise of configuration data threatens the integrity of device operation, while the DoS component jeopardizes availability of critical patient monitoring.

Affected Systems

Dräger SC Monitoring devices—including model lines SC 6002XL, SC 6802XL, SC 7000, SC 8000, and SC 9000 XL—across all firmware and software versions are affected.

Risk and Exploitability

The CVSS v3 score of 7.2 indicates a high‑severity risk. EPSS is not released, and the vulnerability is not listed in the CISA KEV catalog, yet the dual local and remote attack paths present an attractive target for adversaries seeking to subvert device security or disrupt clinical services. Attackers may exploit exposed credentials locally or launch network‑based packet floods to induce reboots; both methods can be carried out without privileged credentials, underscoring the vulnerability’s accessibility.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Dräger

SC 6002XL

unknown

Version	Status	Constraints
`SC 6002XL`	affected	—

Dräger

SC6802XL

unknown

Version	Status	Constraints
`SC6802XL`	affected	—

Dräger

SC 7000

unknown

Version	Status	Constraints
`SC 7000`	affected	—

Dräger

SC8000

unknown

Version	Status	Constraints
`SC8000`	affected	—

Dräger

SC90000 XL

unknown

Version	Status	Constraints
`SC90000 XL`	affected	—

No data.

Vendor Product Confidence Versions

Draeger

Sc6802xl

100%

Version	Status	Scheme	Platform
`[0,*]`	affected	generic	—

Draeger

Sc8000

100%

Version	Status	Scheme	Platform
`[0,*]`	affected	generic	—

Draeger

Sc90000 Xl

100%

Version	Status	Scheme	Platform
`[0,*]`	affected	generic	—

Draeger

Sc 6002xl

100%

Version	Status	Scheme	Platform
`[0,VG2.3.1]`	affected	generic	—

Draeger

Sc 7000

100%

Version	Status	Scheme	Platform
`[0,*]`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update all SC devices to the latest firmware released by Dräger
Change all default and hard‑coded credentials to strong, unique passwords
Restrict network ports used by the devices to trusted traffic, segment the network, and monitor for abnormal reboot activity

Generated by OpenCVE AI on June 3, 2026 at 03:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00193.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://static.draeger.com/security/download/2019-11-27-Draeger-SC7000-SC9000-security-advisory-update-v1-5.pdf
https://www.vulncheck.com/advisories/dr-ger-sc-monitoring-devices-hard-coded-credentials-and-dos

History

Wed, 03 Jun 2026 18:30:00 +0000

Type	Values Removed	Values Added
References	https://static.draeger.com/security

Wed, 03 Jun 2026 17:45:00 +0000

Type	Values Removed	Values Added
References		https://static.draeger.com/security/download/2019-11-27-Draeger-SC7000-SC9000-security-advisory-update-v1-5.pdf

Wed, 03 Jun 2026 14:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 03 Jun 2026 12:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Draeger Draeger sc6802xl Draeger sc8000 Draeger sc90000 Xl Draeger sc 6002xl Draeger sc 7000
Vendors & Products		Draeger Draeger sc6802xl Draeger sc8000 Draeger sc90000 Xl Draeger sc 6002xl Draeger sc 7000

Wed, 03 Jun 2026 02:30:00 +0000

Type	Values Removed	Values Added
Description		Dräger SC Monitoring devices (SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL) contain hard-coded plaintext credentials in source code and a denial-of-service vulnerability that allows local and remote attackers to compromise device integrity across all software versions. A local attacker with direct device access can use the hard-coded credentials to access service and clinical accounts and alter device configuration, while a remote attacker can send malformed network packets to cause repeated device reboots, ultimately resulting in loss of network connectivity and disruption of patient monitoring.
Title		Dräger SC Monitoring Devices Hard-coded Credentials and DoS
Weaknesses		CWE-798
References		https://static.draeger.com/security https://www.vulncheck.com/advisories/dr-ger-sc-monitoring-devices-hard-coded-credentials-and-dos
Metrics		cvssV3_1 `{'score': 7.6, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H'}` cvssV4_0 `{'score': 7.2, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N'}`

Subscriptions

Draeger Sc6802xl Sc8000 Sc90000 Xl Sc 6002xl Sc 7000

MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published: 2026-06-02T18:44:11.815Z

Updated: 2026-06-03T16:19:46.284Z

Reserved: 2026-06-02T18:39:44.176Z

Link: CVE-2019-25722

Vulnrichment

Updated: 2026-06-03T13:15:49.399Z

NVD

Status : Awaiting Analysis

Published: 2026-06-02T20:16:23.690

Modified: 2026-06-04T15:29:14.323

Link: CVE-2019-25722

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-03T10:55:07Z

Weaknesses

CWE-798
Use of Hard-coded Credentials

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object