{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata. Fed continuously.","feed_url":"https://feed.craftedsignal.io/tags/kiosk-escape/feed.json","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cpes":[],"_cs_cves":[{"cvss":8.4,"id":"CVE-2019-25718"}],"_cs_exploited":false,"_cs_has_poc":false,"_cs_poc_references":[],"_cs_products":["Infinity Explorer C700"],"_cs_severities":["high"],"_cs_tags":["privilege-escalation","cve-2019-25718","kiosk escape","medical device"],"_cs_type":"advisory","_cs_vendors":["Dräger"],"content_html":"\u003cp\u003eDräger Infinity Explorer C700 is vulnerable to a privilege escalation (CVE-2019-25718) stemming from a flaw in the kiosk mode implementation. An attacker can exploit this vulnerability via a specific dialog interaction to escape the kiosk environment and gain access to the underlying operating system. This access can then be leveraged to manipulate the device, potentially leading to the display of incorrect or no information from the connected Delta Family patient monitor. The vulnerability allows an attacker to gain control of the operating system, which impacts the integrity of displayed medical data.\u003c/p\u003e\n\u003ch2 id=\"attack-chain\"\u003eAttack Chain\u003c/h2\u003e\n\u003col\u003e\n\u003cli\u003eThe attacker gains physical or remote access to a Dräger Infinity Explorer C700 device.\u003c/li\u003e\n\u003cli\u003eThe attacker interacts with a specific dialog within the kiosk mode application.\u003c/li\u003e\n\u003cli\u003eThrough a series of interactions (details unspecified in source), the attacker triggers the privilege escalation vulnerability (CVE-2019-25718).\u003c/li\u003e\n\u003cli\u003eThe attacker successfully escapes the kiosk mode environment.\u003c/li\u003e\n\u003cli\u003eThe attacker gains access to the underlying operating system.\u003c/li\u003e\n\u003cli\u003eThe attacker uses the elevated privileges to modify system settings or install malicious software.\u003c/li\u003e\n\u003cli\u003eThe attacker manipulates the data displayed by the device from the connected Delta Family patient monitor.\u003c/li\u003e\n\u003cli\u003eThe device displays incorrect, or no information to medical personnel.\u003c/li\u003e\n\u003c/ol\u003e\n\u003ch2 id=\"impact\"\u003eImpact\u003c/h2\u003e\n\u003cp\u003eSuccessful exploitation of CVE-2019-25718 allows an attacker to break out of kiosk mode on a Dräger Infinity Explorer C700 device, gaining access to the underlying operating system. This could lead to the display of incorrect or missing information from the connected Delta Family patient monitor, potentially affecting patient care and safety. The number of affected devices or specific sectors targeted is not specified in the provided source.\u003c/p\u003e\n\u003ch2 id=\"recommendation\"\u003eRecommendation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImplement strict physical access controls to the Dräger Infinity Explorer C700 devices to prevent unauthorized access and initial exploitation.\u003c/li\u003e\n\u003cli\u003eMonitor process creations for unusual processes running outside of the expected kiosk application scope.\u003c/li\u003e\n\u003cli\u003eMonitor network connections for suspicious outbound traffic originating from the Dräger Infinity Explorer C700 devices using the Sigma rule \u0026ldquo;Detect Unusual Network Connection from Medical Device\u0026rdquo;.\u003c/li\u003e\n\u003c/ul\u003e\n","date_modified":"2026-06-01T23:16:38Z","date_published":"2026-06-01T23:16:38Z","id":"https://feed.craftedsignal.io/briefs/2026-06-draeger-privesc/","summary":"Dräger Infinity Explorer C700 contains a privilege escalation vulnerability (CVE-2019-25718) that allows attackers to break out of kiosk mode, access the underlying operating system, and potentially cause the device to display incorrect patient monitor information.","title":"CVE-2019-25718: Dräger Infinity Explorer C700 Kiosk Escape Vulnerability","url":"https://feed.craftedsignal.io/briefs/2026-06-draeger-privesc/"}],"language":"en","title":"CraftedSignal Threat Feed — Kiosk Escape","version":"https://jsonfeed.org/version/1.1"}