CVE-2026-52866
Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT Missing Authorization
CVSS Score
6.5
EPSS Score
0.0%
EPSS Percentile
0th
An attacker within BLE communication range can monopolize the device's only available BLE connection slot, preventing legitimate users or applications from establishing a connection.
| CWE | CWE-862 |
| Vendor | apollo pharmacy |
| Product | blood glucose monitoring system (model no. apg-01 bt) |
| Published | Jun 18, 2026 |
Stay Ahead of the Next One
Get instant alerts for apollo pharmacy blood glucose monitoring system (model no. apg-01 bt)
Be the first to know when new medium vulnerabilities affecting apollo pharmacy blood glucose monitoring system (model no. apg-01 bt) are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected Versions
Apollo Pharmacy / Blood Glucose Monitoring System (Model No. APG-01 BT)
0x0110_v1.1.0
References
apollopharmacy.in: https://www.apollopharmacy.in/contact-us cisa.gov: https://www.cisa.gov/news-events/news/understanding-bluetooth-technology cisa.gov: https://www.cisa.gov/news-events/ics-medical-advisories/icsma-26-169-01 github.com: https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsma-26-169-01.json
Credits
Rishitha Pucchakayala and Centre for Development of Advanced Computing (Hyderabad) reported these vulnerabilities to CISA.