Insecure Protocol Implementation in CGM MEDICO by CGM
CVE-2025-48981

Currently unrated

Key Information:

Vendor: Compugroup Medical
Status: Cgm Medicoi
Vendor: CVE Published:; 8 October 2025

🔔 Create Compugroup Medical Vulnerability Alert

What is CVE-2025-48981?

An insecure implementation of the DNET protocol in CGM MEDICO exposes the system to potential data manipulation and eavesdropping risks for attackers on the intranet due to optional encryption. This vulnerability allows malicious actors to intercept and modify sensitive information transmitted over the network, leading to severe security breaches. Organizations using CGM MEDICO should ensure they apply necessary security patches and review their network protocols to mitigate these risks.

Affected Version(s)

CGM MEDICOI 29.0 < 29.1

References

https://www.cgm.com/deu_de/allgemein/cybersecurity-en/sec...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 8, 2025
Vulnerability Reserved
May 29, 2025

JSON