CVE-2019-25718

HIGH 8.4

Dräger Infinity Explorer C700 Privilege Escalation via Kiosk Mode Bypass

CVSS Score

8.4

EPSS Score

0.0%

EPSS Percentile

2th

Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out of kiosk mode and access the underlying operating system through a specific dialog interaction. Attackers can exploit this kiosk escape to take control of the operating system and cause the device to display incorrect or no information from the connected Delta Family patient monitor.

CWE	CWE-451
Vendor	dräger
Product	infinity explorer c700
Published	Jun 1, 2026
Last Updated	Jun 3, 2026

Stay Ahead of the Next One

Get instant alerts for dräger infinity explorer c700

Be the first to know when new high vulnerabilities affecting dräger infinity explorer c700 are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Dräger / Infinity Explorer C700

Infinity Explorer C700

References

NVD ↗ CVE.org ↗ EPSS Data ↗

static.draeger.com: https://static.draeger.com/security/download/2019-01-22-draeger-infinity-delta-vf10-1-security-advisory.pdf vulncheck.com: https://www.vulncheck.com/advisories/dr-ger-infinity-explorer-c700-privilege-escalation-via-kiosk-mode-bypass

Credits

Marc Ruef and Rocco Gagliardi, scip AG