Denial-of-Service Vulnerability in Dräger Patient Monitors
CVE-2019-25716

7.1HIGH

Key Information:

Vendor: Dräger
Status: Infinity Delta; Infinity Delta Xl; Infinity Kappa
Vendor: CVE Published:; 1 June 2026

What is CVE-2019-25716?

Dräger Infinity Delta, Delta XL, and Kappa patient monitors are susceptible to a denial-of-service issue that allows remote attackers to disrupt patient monitoring services. By sending specially crafted malformed network packets, attackers can trigger a reboot of the device, which leads to a temporary loss of monitoring capabilities. Repeated attacks can push the devices to revert to their default settings, resulting in complete network disconnection and compromised patient safety.

Affected Version(s)

Infinity Delta all software versions

Infinity Delta XL all software versions

Infinity Kappa all software versions

References

https://static.draeger.com/security

vendor-advisory

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 1, 2026
Vulnerability Reserved
Jun 1, 2026

Credit

Marc Ruef and Rocco Gagliardi, scip AG

CVE-2019-25716 Data

JSON