Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT
Summary
The Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT, specifically model 0x0110_v1.1.0, has vulnerabilities CVE-2026-50034 and CVE-2026-52866. Successful exploitation could allow an attacker to intercept sensitive health information and prevent legitimate device connections.
IFF Assessment
These vulnerabilities allow attackers to obtain sensitive health data and disrupt device functionality, posing a direct threat to patient privacy and care.
Severity
The CVSS score of 6.5 indicates a 'medium' severity vulnerability. This is due to the potential for cleartext transmission of sensitive information (healthcare data) and missing authorization, allowing unauthorized access to health metrics.
Defender Context
This alert highlights the importance of securing medical devices, especially those with Bluetooth connectivity, as they can be targets for sensitive data theft. Defenders should monitor for potential exploitation attempts targeting IoT medical devices and ensure proper network segmentation and monitoring are in place.