Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT

MEDIUM

CVSS 6.5

Date 2026-06-18T06:00:00+00:00

Source cisa-csaf

Published by CISA

// Description

Successful exploitation of these vulnerabilities could allow an attacker to obtain sensitive health-related information and prevent legitimate users from establishing a connection with the device.

// Vulnerabilities (2)

CVE ID	CVSS Score	Severity	Description
CVE-2026-50034	6.5	medium	An attacker within BLE communication range can passively intercept wireless traffic and obtain sensitive health-related information, including glucose measurement values.
CVE-2026-52866	6.5	medium	An attacker within BLE communication range can monopolize the device's only available BLE connection slot, preventing legitimate users or applications from establishing a connection.

// Remediations (2)

Mitigation: Apollo Pharmacy did not respond to CISA's requests to coordinate. Users are encouraged to reach out

Apollo Pharmacy did not respond to CISA's requests to coordinate. Users are encouraged to reach out to Apollo Pharmacy directly for more information:https://www.apollopharmacy.in/contact-us.

Mitigation: CISA recommends users follow the guidance in the Understanding Bluetooth Technology blog https://www

CISA recommends users follow the guidance in the Understanding Bluetooth Technology blog https://www.cisa.gov/news-events/news/understanding-bluetooth-technology.

Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT

// Description

// Vulnerabilities (2)

// Remediations (2)

// References