SOOIL Developments Co Ltd DiabecareRS,AnyDana-i & AnyDana-A, the communication protocol of the insulin pump and its AnyDana-i & AnyDana-A mobile apps doesn’t use adequate measures to authenticate the communicating entities before exchanging keys, which allows unauthenticated, physically proximate attackers to eavesdrop the authentication sequence via Bluetooth Low Energy.
[
{
"product": "SOOIL Developments CoLtd DiabecareRS,AnyDana-i,AnyDana-A",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Dana DiabecareRS, AnyDana-i, AnyDana-A All versions prior to 3.0"
}
]
}
]