Ripple20 – Treck TCP/IP Stack Vulnerabilities SECURITY BULLETIN

June 18, 2020


Medtronic products are not impacted by the series of security vulnerabilities related to the Treck TCP/IP networking software. These vulnerabilities, which were publicized through the Department of Homeland Security (DHS) Computer Emergency Readiness Team (CERT) Coordination Center, impact Treck Software Networking components of some products and can allow for remote access or system disruption.

Medtronic Response

Our technical teams have confirmed there is no impact to Medtronic products related to the Treck Networking Components. Our product security teams are closely monitoring this evolving situation and will continue assessment on the vulnerabilities identified. We are aware that these vulnerabilities may impact other networking software and will take appropriate actions as circumstances dictate, including additional communication, patching and other mitigations.

At Medtronic, we take cybersecurity matters seriously and have teams continuously engaged in these matters. We will continue to follow our established coordinated disclosure processes for any significant security vulnerabilities associated with our products or any updates associated with this vulnerability.

For More Information

Customers needing additional information should contact: