Dräger Infinity M300 Network-Based Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in Dräger Infinity M300 patient-worn monitors running software versions VG2.3.1 and earlier. This vulnerability allows network-adjacent attackers to repeatedly cause device reboots by sending malicious requests over the Infinity Network. Exploitation of this issue forces the device into a fail state that requires a manual restart, leading to a loss of wireless connectivity and disruption of patient monitoring functionality.

Impact

Exploitation of this vulnerability causes the device to reboot, interrupting patient monitoring and wireless connectivity. The device enters a fail state that requires manual intervention to restore functionality.

Added: Jun 2, 2026, 8:48 PM

Updated: Jun 2, 2026, 8:48 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

9.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

9.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dräger Infinity M300 Network-Based Denial-of-Service Vulnerability

Vulnerability

Impact

Affected Products

Dräger Infinity M300

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating